Hey is there any alternatives to CloudFlare reverse proxies? I want to hide my server IP but not share everything with CF…

  • Toes♀@ani.socialEnglish
    2·
    1 year ago

    I like that idea.

    I’d suggest OVH or Digital Ocean.

    If you think a DDoS attack is possible I’d suggest azure for that.

    • tal@lemmy.todayEnglish
      2·
      1 year ago

      I’d probably use a VPS myself.

      I seem to recall db0 saying that lemmy.dbzer0.com is behind some sort of reverse proxy. I assume that they’re in the same boat as OP.

      looks

      $ host -t a lemmy.dbzer0.com
lemmy.dbzer0.com has address 51.77.203.116
$ whois 51.77.203.116
[snip]
role:           OVH Technical Contact
address:        OVH SAS
address:        2 rue Kellermann
address:        59100 Roubaix
address:        France
admin-c:        OK217-RIPE
tech-c:         GM84-RIPE
tech-c:         SL10162-RIPE
nic-hdl:        OTC2-RIPE
abuse-mailbox:  [email protected]
mnt-by:         OVH-MNT
created:        2004-01-28T17:42:29Z
last-modified:  2014-09-05T10:47:15Z
source:         RIPE # Filtered

% Information related to '51.77.0.0/16AS16276'

route:          51.77.0.0/16
origin:         AS16276
mnt-by:         OVH-MNT
created:        2018-03-07T09:24:45Z
last-modified:  2018-03-07T09:24:45Z
source:         RIPE
$

      I don’t know if that’s a VPS, but looks like they’re using OVH.

      • Pup Biru@aussie.zoneEnglish
        3·
        1 year ago

        a reverse proxy these days is pretty much just a requirement of any dynamic service. they often run on the same host as the software

        • tal@lemmy.todayEnglish
          2·
          1 year ago

          Aight, but db0 had something about it obscuring the server location, IIRC.

          • Pup Biru@aussie.zoneEnglish
            1·
            1 year ago

            it’s possible, but that would seem… odd… for such a large and tech-savvy instance. there’s a lot of reasons why this isn’t a good idea, and very few technical reasons why it is

            my guess is that it’s less about obscuring server location for privacy reasons as is the implications in this thread, and more about handling changes cleanly or something like that - in which case, sure it obscures the server location but more that it makes the server “location” (or hardware, etc) irrelevant and fungible