Hey is there any alternatives to CloudFlare reverse proxies? I want to hide my server IP but not share everything with CF…

  • breakingcups@lemmy.world
    link
    fedilink
    English
    arrow-up
    7
    arrow-down
    1
    ·
    5 months ago

    Depends on why you want to hide your server ip, what’s your use case? Is it to protect against DDOS?

    Cloudflare is evil, but is there any other party you would trust to share everything with?

    • foremanguy@lemmy.mlOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      5 months ago

      Do you something like a vps would be more secure? Paying some dollars a month

      • Toes♀@ani.social
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 months ago

        I like that idea.

        I’d suggest OVH or Digital Ocean.

        If you think a DDoS attack is possible I’d suggest azure for that.

        • tal@lemmy.today
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          5 months ago

          I’d probably use a VPS myself.

          I seem to recall db0 saying that lemmy.dbzer0.com is behind some sort of reverse proxy. I assume that they’re in the same boat as OP.

          looks

          $ host -t a lemmy.dbzer0.com
          lemmy.dbzer0.com has address 51.77.203.116
          $ whois 51.77.203.116
          [snip]
          role:           OVH Technical Contact
          address:        OVH SAS
          address:        2 rue Kellermann
          address:        59100 Roubaix
          address:        France
          admin-c:        OK217-RIPE
          tech-c:         GM84-RIPE
          tech-c:         SL10162-RIPE
          nic-hdl:        OTC2-RIPE
          abuse-mailbox:  abuse@ovh.net
          mnt-by:         OVH-MNT
          created:        2004-01-28T17:42:29Z
          last-modified:  2014-09-05T10:47:15Z
          source:         RIPE # Filtered
          
          % Information related to '51.77.0.0/16AS16276'
          
          route:          51.77.0.0/16
          origin:         AS16276
          mnt-by:         OVH-MNT
          created:        2018-03-07T09:24:45Z
          last-modified:  2018-03-07T09:24:45Z
          source:         RIPE
          $
          

          I don’t know if that’s a VPS, but looks like they’re using OVH.

          • Pup Biru@aussie.zone
            link
            fedilink
            English
            arrow-up
            3
            ·
            5 months ago

            a reverse proxy these days is pretty much just a requirement of any dynamic service. they often run on the same host as the software

            • tal@lemmy.today
              link
              fedilink
              English
              arrow-up
              2
              ·
              5 months ago

              Aight, but db0 had something about it obscuring the server location, IIRC.

              • Pup Biru@aussie.zone
                link
                fedilink
                English
                arrow-up
                1
                ·
                5 months ago

                it’s possible, but that would seem… odd… for such a large and tech-savvy instance. there’s a lot of reasons why this isn’t a good idea, and very few technical reasons why it is

                my guess is that it’s less about obscuring server location for privacy reasons as is the implications in this thread, and more about handling changes cleanly or something like that - in which case, sure it obscures the server location but more that it makes the server “location” (or hardware, etc) irrelevant and fungible