this post was submitted on 02 Jul 2023
59 points (98.4% liked)

Selfhosted

39964 readers
238 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

I would like to host my own web server with a domain name I purchased but my public IP isn't static.

top 47 comments
sorted by: hot top controversial new old
[–] Feliberto@programming.dev 15 points 1 year ago

I use duckdns.org , but if you are trying to host a webpage I totally recommend using Cloudflare, Cloudflare tunnels and a reverse proxy like nginx.

Setting it up may be a bit tricky, but it is a gamechanger. I followed Ibracorp's guides and I had no problem.

[–] sleepybear@lemmy.myspamtrap.com 12 points 1 year ago (1 children)

I run ddclient on a local machine and it updates my Cloudflare DNS records if my IP changes.

OPNSense has it built in too, if you use it. So does PFSense, I think. Been a while, might be misremembering.

[–] Greg@lemmy.ca 3 points 1 year ago

I do this too. I proxy my DNS which means my home IP isn't exposed

[–] vynlwombat@lemmy.world 10 points 1 year ago (1 children)

I host my own ddns server in a debian container https://wiki.debian.org/DDNS

[–] starkcommando@lemmy.world 10 points 1 year ago* (last edited 1 year ago) (1 children)

Here we go down another rabbit hole... 😆

[–] JurassicPork@lemmy.one 7 points 1 year ago

Right!!!! Lmao 😂 same boat as ya lol

[–] sam@lemmy.ca 9 points 1 year ago (1 children)

I've been using freedns.afraid.org for about a year now.

[–] randy@lemmy.ca 1 points 1 year ago (1 children)

I've also been on freedns.afraid.org for many years. Back when I switched from dyndns, it wasn't possible to get Let's Encrypt certificates on afraid.org's domains, but that might have changed. I worked around it by taking a domain I already owned and using a CNAME to point it at my afraid.org domain.

[–] sam@lemmy.ca 2 points 1 year ago

I use Let's Encrypt on my domains, but they're domains that my afraid.org subdomains point to.

[–] hagerman@lemmy.world 8 points 1 year ago

I use a Cloudflare tunnel rather than a dynamic DNS provider. Some in the self hosting community are opposed to Cloudflare, but I appreciate the tools they provide (especially Zero Trust so I can put my self hosted apps behind Okta).

[–] bdonvr@thelemmy.club 7 points 1 year ago (1 children)

DNS managed by Cloudflare, and cf-ddns

[–] bigBananas@feddit.nl 1 points 1 year ago

2nd, but with just a bash script. Also, I'm forwarding http & https to different IPs and the best thing about cloudflare is that you can restrict those ports to only be open when coming from cloudflare's proxy. I like the extra layer of security, and dislike that they can see all traffic..

[–] theghostoutside_@lemmy.world 7 points 1 year ago (3 children)

I use DuckDNS. There's been only one outage for the ~2 years I've been using it and it's free. I also use DuckDNS to acquire the SSL certificates for the reverse proxy.

[–] wernsting@lemm.ee 3 points 1 year ago (1 children)

How gave you set it up out of curiosity?

[–] axzxc1236@lemmy.world 3 points 1 year ago* (last edited 1 year ago)

If you mean automatically update IP part, duckdns website has a very comprehensive guide.

If you mean getting a free SSL certificate, you can use acme.sh (this is what I used) which has integrated support for duckddns (To use let's encrypt you need to use --server letsencrypt in your command)

[–] nieceandtows@lemmy.world 1 points 1 year ago (1 children)

I used duckdns for my jellyfin server, but after a week or so I started getting malicious site warnings from Firefox, and had to ‘accept the risk and continue’ every time. Ended up going back to noip. It’s a pain to renew every month, but I haven’t had any other problems with it.

[–] Josh@lemm.ee 2 points 1 year ago

I use noip as well, but because I only have an IP camera on that network, and the camera has built-in DDNS support for noip. But I hate it having to renew monthly.

[–] uyuu@lemmy.4d2.org 1 points 1 year ago

I also use duckdns, but in the last year it went down like twice or something. Its good but not really reliable.

[–] jeena@jemmy.jeena.net 4 points 1 year ago

The easiest thing to do is to use https://www.duckdns.org/ and then point your domain as a CNAME to this duckdns subdomain.

[–] lntl@lemmy.sdf.org 4 points 1 year ago* (last edited 1 year ago) (1 children)

Does your domain provider have a DDNS service? I buy my domains from namecheap.com and use their DDNS service for exactly what you're describing.

[–] starkcommando@lemmy.world 1 points 1 year ago (1 children)

I have NameCheap as well. I found their Windows client after I made this post. I'm still curious is there are better services out there. It seems Cloudflare may have the best tools for security for a webserver, i.e. hiding the real IP address.

[–] porksoda@lemmy.world 1 points 1 year ago

I use namecheap and dd client. Happy to share my config file if you need if.

[–] betternotbigger@lemmy.world 4 points 1 year ago (2 children)

If you only need public access to things like HTTP or SSH you don’t necessarily need to run dynamic ip and just setup Cloudflare Tunnels. So far I haven’t needed to put anything public that doesn’t run on the provided tunnels.

[–] valkyre09@vlemmy.net 1 points 1 year ago

Cloudflare tunnels is the way to go for small self hosted content. You’re hiding behind their ddos protection and your IP / location remains hidden from end users.

[–] starkcommando@lemmy.world 1 points 1 year ago (1 children)

Where are the settings for these tunnels located in Cloudflare? I was looking around the website last night but didn't have any luck.

It's confusing. I think they are under zero trust now

[–] SJ_Zero@lemmy.fbxl.net 3 points 1 year ago

If you're using godaddy, you can use a script to do your own dynamic DNS:

https://www.instructables.com/Quick-and-Dirty-Dynamic-DNS-Using-GoDaddy/

[–] wernsting@lemm.ee 3 points 1 year ago

https://www.duckdns.org but to be fair I have not properly configured it in #opnsense yet!

[–] sifrmoja@mastodon.social 2 points 1 year ago

@starkcommando When I didn't have a static IP I was using CloudFlare for this with my own domain.

[–] ComMcNeil@kbin.social 2 points 1 year ago

I use cloudflare and have a dyndns client running on my synology nas

[–] RedditExodus@kbin.social 2 points 1 year ago

Afraid.org is what I've been using ever since dyndns started charging big prices for what used to be free.

[–] kamin@lemmy.kghorvath.com 2 points 1 year ago (1 children)

My IP isn’t technically static but it hasn’t changed in the 3 years I’ve been with this ISP.

[–] calmluck9349@infosec.pub 3 points 1 year ago (2 children)

This. But I use namecheap and the built in tool on pfsense to keep an A record up to date if it ever changed.

[–] kamin@lemmy.kghorvath.com 1 points 1 year ago

I should automate something like that too. I just have one A record pointing to my IP and all my subdomains CNAME’d to that so that if it ever changes, I just have to update that one record.

[–] starkcommando@lemmy.world 1 points 1 year ago

I have NameCheap as well. I was trying to set this up with the ddclient on OPNSense but the logs suggested it couldn't connect to NameCheap. What do you need to authenticate other than the DDNS passcode supplied by NameCheap?

[–] Bristlerock@kbin.social 2 points 1 year ago* (last edited 1 year ago)

DNS-O-Matic (recommended by CloudFlare, among others) combined with SWAG and Authelia will handle dynamic DNS, reverse proxying, SSL certificates, and MFA. SWAG (nginx, Let's Encrypt and Certbot) and Authelia (MFA) run nicely in a 2 container Docker stack.

Mine have been running for ~18 months on my NAS, though I have a fixed IP so no longer use a DDNS provider.

[–] DunkinCoder@lemmy.world 2 points 1 year ago

I use this container, favonia/cloudflare-ddns, for Cloudflare and my domain.

[–] Hopfgeist@feddit.de 1 points 1 year ago* (last edited 1 year ago)

Aside from a brief scare a couple of months ago, when the owner/operator was unreachable and the configuration interface and some automatic update paths were not working, I have been using afraid.org, and it has proven to be a stellar service, and free for basic needs.

[–] alvaro@social.graves.cl 1 points 1 year ago

@starkcommando@lemmy.world dyndns worked fine. Duckdns is a preferred among self hosters. Also your domain name provider might also offer dynamic dns sometimes

[–] erre@feddit.win 1 points 1 year ago* (last edited 1 year ago)

I've been using https://dnsomatic.com/ for a long while now. It updates Cloudflare which manages my DNS. It updates DNS at other providers too which is useful.

My router is able to send DDNS updates to it.

[–] TX@nadajnik.org 1 points 1 year ago
[–] elscallr@kbin.social 1 points 1 year ago* (last edited 1 year ago)

I just have a cron script running on a machine that does something like this every 10 seconds

C_IP=`dig +short my.domain`
IP=`curl https://api.ipify.org`
if(C_IP != IP) {
    updateRoute53(IP)
}

This is just for my main home server. Gets the job done because if it's out of date for a few seconds nothing matters.

[–] IcerOut@kbin.social 1 points 1 year ago

Before, I used to use duckdns. Completely free and super simple
Nowadays I just have a docker container that updates my A records on my domain directly through namesilo's API. Took like 5 mins to set up the config

[–] 667@kbin.social 0 points 1 year ago* (last edited 1 year ago) (1 children)

~~AdGuard! They even have installable profiles for Apple devices, so I get ad blocking even on mobile!~~

mb, DDNS. nvm

[–] Virkkunen@kbin.social 1 points 1 year ago

OP is asking about DDNS instead of DNS. They want a fixed address to their ever changing IP address.

[–] blackstrat@lemmy.fwgx.uk 0 points 1 year ago

I pay an extra £1 a month to my ISP to get a static address. Figured it's well worth having no hassle.

load more comments
view more: next ›