I already block a crazy amount of ads with DNS blocklists (and block Google as well) but I’m at a point where I’m about to start intercepting my own HTTPS traffic in order to cache it.
I’m tunneling all my internet traffic through commercial VPNs to a completely different country across the planet with better privacy laws but damn the high latency is exhausting.
Doing some neat HTTP header manipulation with Privoxy would be incredible too.
I’m at the point where I want to just build it but it’s a matter of free time (I’m a full time web developer with a side business). Also, I wouldn’t know where to source car maintenance schedules.
I use Tailscale to do this. I install the software on everything I can, but for resources on the LAN that don’t have Tailscale running I use its Subnet Router feature to masquerade the traffic and connect to those clients.
As for the commercial VPN, it’s a bit more involved. I have a few Exit Nodes (VPS) that take incoming Tailscale traffic destined to the Internet and re-route it via the commercial VPN’s WireGuard network interface.
This was a huge challenge for me (lots of iptables, ip6tables rules) but I have it down to a reproducible script I can provide if you’d like an example.
My next goal is to containerize the two VPS servers into one with Docker. Tailscale is a bit annoying that you can’t have multiple Nodes running on the same machine (hence my temporary two VPS solution).
Note: capitalized terms are Tailscale feature names
Yes but this isn’t the point I’m getting at — VPN doesn’t always mean you’re sending all your Internet traffic down the tunnel. You can choose to configure only specific networks to use the VPN tunnel.
Yes but this isn’t the point I’m getting at — VPN doesn’t always mean you’re sending all your Internet traffic down the tunnel. You can choose to configure only specific networks to use the VPN tunnel.
You won’t be “on a different local network,” you’ll be accessing specific networks (or subnets) via the VPN tunnel rather than some other network interface on your machine.
So if you’re at home with a 192.168.0.0/24 network and you want to access an office resource on the 192.168.141.0/24 network, likely what will happen is your machine with have a route to 192.168.131.0/24 via the network the VPN provides (let’s just say 10.0.0.1).
Depending on how everything’s configured, the server you’re accessing might see it coming from the VPN server (masquerade) or it could very well be passed on as-is (which would only work if the server has a routing table back to you via the VPN).
Typically when people use VPNs for internet access, the traffic is sent out masqueraded so that it appears to come from the VPN’s WAN IP address.
This is the right answer.
If you’re routing internet traffic via the VPN tunnel then yes of course that’s true.
But you can be connected to a VPN and only direct specific subnets (like the traditional office network example) to it. You’re not always forced to use it as a default route (using the term loosely here).
That’s a good point too.
I’m primarily a web developer so essentially my entire toolkit is already FOSS and it doesn’t make sense to even run half of it on Windows. Windows is usually the odd one out with weird hacks to make it play nice.
I use macOS a lot too and because it’s UNIX my Linux toolset is available and ported to the OS with (what I understand to be) minimal changes.
And I’ve never needed to deploy to some Windows Server either (the thought frightens me).
It might be allowed by the spec, but it still feels wrong. I’m sad XHTML didn’t reign supreme with its extremely picky parser.
Good point — I’m pretty far down the rabbit hole. I haven’t really wanted to mess with a non-UNIX/Linux based OS in ages.
Side note: what OS would that be besides DOS or Windows? Old-school Mac OS comes to mind (System 7) but I like playing with modern platforms more than older ones.
It’s so weird to me that Lemmy is full of anti-Windows, anti-Google posts but the comments are always “I’m thinking about switching.”
How about… just do it?
I don’t know what I’m trying to say but being 20 years into “Windows-free” a few years of “Google-free” it’s tiring. I know everyone isn’t me but it’s tough watching this from the other side.
As a result, anyone wanting to access blocked sites from Russia is forced to use a VPN, a protective tunnel that encrypts internet traffic and changes a user’s IP address.
I hate how media describes VPN. It doesn’t “change your IP address” but rather makes your traffic appear to come from a remote endpoint when configured to do so.
I use VPNs all the time that don’t “change my IP address” at all.
I actually agree with you, but I also don’t think it’s realistic to expect people to be “real” around a celebrity.
It bothers me that you never closed your HTML tag
This is what gets me. Why don’t they do this? They’re turning down profit by discontinuing support, but probably their logic is someone else will benefit from the hardware without bringing in profit, so that’s bad forsomefucking reason.
Any good petition writers? I’d sign something like this in a heartbeat.
I’m pretty good about either giving away or selling off used electronics pretty cheap, but in the worst case I take it to Best Buy as they have free electronics recycling.
I’m not sure if they still do it (it’s been a long time), but I kind of hate that you’re relying on the goodness of their heart to offer it.
Let’s talk about
I think the idea was to have a discussion.
Searx is federated? I’ll have to read up on that; I use it all the time but had no idea.