new post 250810
This commit is contained in:
Kathleen Fitzpatrick
@@ -5,11 +5,44 @@
|
||||
<subtitle>The long-running and erratically updated blog of Kathleen Fitzpatrick.</subtitle>
|
||||
<link href="https://kfitz.info/feed/feed.xml" rel="self" />
|
||||
<link href="https://kfitz.info/" />
|
||||
<updated>2025-06-26T12:30:07Z</updated>
|
||||
<updated>2025-08-09T20:38:09Z</updated>
|
||||
<id>https://kfitz.info/</id>
|
||||
<author>
|
||||
<name>Kathleen Fitzpatrick</name>
|
||||
</author>
|
||||
<entry>
|
||||
<title>Networking Continued</title>
|
||||
<link href="https://kfitz.info/networking-continued/" />
|
||||
<updated>2025-08-09T20:38:09Z</updated>
|
||||
<id>https://kfitz.info/networking-continued/</id>
|
||||
<content type="html"><p>As you may recall, I've been experimenting with setting up a home server, and several months ago had gotten stuck on an issue related to <a href="https://kfitz.info/networking/">the structure of my network</a>. <a href="https://kfitz.info/networking/?ht-comment-id=26755687">Taylor hopped in</a> and really helped me understand how everything <em>ought</em> to work.</p>
|
||||
<p>But it's not working. And I'm again flummoxed.</p>
|
||||
<p>Here's the setup:</p>
|
||||
<ol>
|
||||
<li>I have my ISP's modem/router/gateway monstrosity (the BGW320) running in IP Passthrough mode, with the WAN IP address being passed to my gateway Eero.</li>
|
||||
<li>I have my Eeros set to Automatic DHCP mode; the gateway Eero is successfully getting the WAN IP address and is handing out private IP addresses in the 192.168.4.X range.</li>
|
||||
<li>I have a registered domain name (let's say <code>example.net</code>), and I have an A record at my DNS service pointing to my WAN IP address. I have also created a subdomain A record (<code>service</code>) pointing to the same IP address. DNS Checker gives me all green checks for both.</li>
|
||||
<li>I have a mini server, running Proxmox.</li>
|
||||
<li>I have installed Nginx Proxy Manager in a container on the Proxmox (an LXC), which is running and reachable at the static address 192.168.4.11.</li>
|
||||
<li>I have installed the service I'm trying to expose in another LXC, which is running and reachable at the static address 192.168.4.12.</li>
|
||||
<li>I have set up port forwarding on my Eero network for ports 80 and 443 to 198.168.4.11.</li>
|
||||
<li>I have created a proxy host in NPM, for which all the dots are green:
|
||||
<ul>
|
||||
<li>Domain Name: <a href="http://service.example.net">service.example.net</a></li>
|
||||
<li>Scheme: http</li>
|
||||
<li>Forward Hostname/IP: 192.168.4.12</li>
|
||||
<li>Forward Port: <code>port</code></li>
|
||||
<li>Block Common Exploits and Websockets Support on</li>
|
||||
<li>Access List: Publicly Accessible</li>
|
||||
</ul>
|
||||
</li>
|
||||
</ol>
|
||||
<p>But <code>http://service.example.net:port</code> refuses to connect, as does <code>http://example.net</code>, either from my local network or through my VPN. And <code>traceroute</code> to either <code>example.net</code> or <code>service.example.net</code> stalls out.</p>
|
||||
<p>I've checked the Proxmox firewall and inbound 80 and 443 are both set to accept. I've checked to see whether my ISP's montrosity's firewall could be blocking those ports but... who's to say. The NAT/Gaming (sigh) panel of the admin interface isn't showing the gateway Eero as a device that could need anything in particular sent its way, so my assumption is that IP Passthrough passes inbound requests through for the Eero to sort out, too.</p>
|
||||
<p>I've searched around, and the nearest thing I've found to what I'm trying to do and how I'm trying to do it is in <a href="https://www.reddit.com/r/Proxmox/comments/u857x5/nginx_proxy_manager_setup_troubles/">this Reddit thread</a>, but the problem in that case is back at the beginning with the A record, which is definitely not my issue, unless I spelled my domain name wrong at the DNS. (I didn't.) And that person was able to get to the NPM congratulations page; my connections get refused entirely.</p>
|
||||
<p>If anybody sees anything that I should adjust, or take a look at adjusting, I'd be grateful to hear. I'm already <em>this</em> close to dumping my ISP anyhow due to some ongoing service issues, and getting rid of their annoying modem/router/gateway would be a bonus, but I'm not entirely certain that it's the problem, and I'd love to find a way through without taking that step.</p>
|
||||
</content>
|
||||
</entry>
|
||||
<entry>
|
||||
<title>Distinguished</title>
|
||||
<link href="https://kfitz.info/distinguished/" />
|
||||
@@ -132,14 +165,6 @@
|
||||
<p>“Independence” and “neutrality” are not the same thing. In the South African context, neutrality would have meant acceding to academic apartheid. Once the backstory is supplied (and history returned to theory, as in the work of Charles Mills), the lesson then is that the university must remain independent from the government but <em>cannot</em> remain neutral. Faculty must make judgment calls on the university's behalf that take into consideration the historical and political circumstances in which their universities find themselves. (211)</p>
|
||||
</blockquote>
|
||||
<p>Two months later, it is clear to me that “thoughtful restraint” will not only not protect the university from those who wish to do it harm, but will erode the very independence that the institution needs in order to survive right now: the ability to bring the faculty’s best judgment to bear in declaring that there <em>are</em> truths that cannot be ordered away. Our institutions cannot live out their most basic reason for being without a willingness to point out and reject outright lies, and without the ability to say that there are issues — like the basic humanity of each and every person on campus, and that they deserve respect, safety, and opportunity — that should never be up for debate.</p>
|
||||
</content>
|
||||
</entry>
|
||||
<entry>
|
||||
<title>Holding Space</title>
|
||||
<link href="https://kfitz.info/holding-space/" />
|
||||
<updated>2025-01-31T20:00:18Z</updated>
|
||||
<id>https://kfitz.info/holding-space/</id>
|
||||
<content type="html"><p>Here I was, super happy with my return to blogging in 2024. I wasn't crazy prolific or anything, but I did manage to post <em>something</em> every month except for April. What happened in April? <a href="https://kfitz.info/things-that-happened/">Kind of a lot.</a> But nothing compared with January. Someday I hope to have the time and space necessary to write about at least part of it, but that day is not today. Today, all I can do is close out January by trying to hold a bit of space toward a better moment. May that better moment come soon, for all of us.</p>
|
||||
</content>
|
||||
</entry>
|
||||
</feed>
|
||||
@@ -545,13 +545,21 @@ pre[class*="language-diff-"] {
|
||||
<subtitle>The long-running and erratically updated blog of Kathleen Fitzpatrick.</subtitle>
|
||||
<link href="https://kfitz.info/feed/masto.xml" rel="self"/>
|
||||
<link href="https://kfitz.info/"/>
|
||||
<updated>2025-06-26T12:30:07Z</updated>
|
||||
<updated>2025-08-09T20:38:09Z</updated>
|
||||
<id>https://kfitz.info/</id>
|
||||
<author>
|
||||
<name>Kathleen Fitzpatrick</name>
|
||||
<email>kfitz@kfitz.info</email>
|
||||
</author>
|
||||
|
||||
<entry>
|
||||
<title>Networking Continued</title>
|
||||
<link href="https://kfitz.info/networking-continued/"/>
|
||||
<updated>2025-08-09T20:38:09Z</updated>
|
||||
<id>https://kfitz.info/networking-continued/</id>
|
||||
<content type="html">As you may recall, I've been experimenting with setting up a home server, and several months ago had gotten stuck on an issue related to the structure of my network.</content>
|
||||
</entry>
|
||||
|
||||
<entry>
|
||||
<title>Distinguished</title>
|
||||
<link href="https://kfitz.info/distinguished/"/>
|
||||
|
||||
Reference in New Issue
Block a user