| 18 Dec 2025 |
 magic_rb | Eyyy .cz spotted | 10:07:54 |
| magic_rb | Ill write my own simple thing one of these days. Which will just drive kernel space wg. Youll be the first ill ask for feedback | 10:08:27 |
 n4ch723hr3r (putting stuff in your name is cringe) | unfortunately C, but i'll look into it | 10:23:51 |
 Acid Bong | In reply to @k900:0upti.me
And I thought Tailscale was bad eli5 how bad is it? | 12:52:43 |
 K900 | Mostly just not a lot of options for DNS | 12:53:03 |
 aktaboot | hmm, i can't see this image, matrix hs issues again? :( | 12:53:17 |
| aktaboot | nvm, seems like a client issue | 12:55:04 |
| Acid Bong | In reply to @k900:0upti.me
Mostly just not a lot of options for DNS as in using the homeserver as DNS server via VPN? | 12:57:12 |
| K900 | No, as in customizing how the integrated DNS server in the client behaves | 12:57:59 |
 adamcstephens | for simple zone based routing over vpn, resolved kinda works | 13:23:05 |
| 19 Dec 2025 |
| n4ch723hr3r (putting stuff in your name is cringe) | is it just me or is caddy's server side ALPN broken? | 07:24:14 |
| n4ch723hr3r (putting stuff in your name is cringe) | https://caddyserver.com/docs/caddyfile/directives/tls#alpn
nvm you have to manually set ALPN it seems | 07:30:07 |
| n4ch723hr3r (putting stuff in your name is cringe) | * https://caddyserver.com/docs/caddyfile/directives/tls#alpn
nvm you have to manually set ALPN it seems (small edit here to clarify: i thought you could use ALPN for a faster switch to http3 but thats not possible it seems) | 08:01:37 |
 kraftnix | specifically for .local i would not recommend using that domain name/tld since it conflicts with mDNS and you get differing and strange behaviours across different platforms and it can be hard to debug issues.
as k900 mentioned, id use a tld under arpa or your own custom ending can work too, if you are already using resolved, you can indicate all domains under .mywhatevertld to go to a specific dns server using Domains=~mywhatevertld in the networkd unit
| 08:25:47 |
| n4ch723hr3r (putting stuff in your name is cringe) | .local was an example, but thx for the info | 08:29:18 |
 emily | use .internal | 08:36:47 |
| emily | it is reserved by ICANN unlike every other such name | 08:37:00 |
| emily | (.home.arpa is probably fine too since it's RFC-reserved, though it's uglier) | 08:38:18 |
| emily | * (.home.arpa is probably fine too since it's RFC-reserved, though it's uglier) | 08:38:36 |
 Nigel | Sorry, trying to follow and learn, is WG wireguard? | 12:28:42 |
| magic_rb | Ye | 12:29:46 |
|  Frédéric Christ (back on 02.01.) changed their display name from Frédéric Christ to Frédéric Christ (back on 02.01.). | 15:15:40 |
 Vera Gradient | for some reason podman isn't setting its own route_localnet to 1 anymore for me, has anyone ran into this? for now I've fixed it by setting it manually on my sysctl config but I'm certain this should be set automatically in the first place | 16:52:32 |
| 22 Dec 2025 |
 Autiboy | What version of nixos? | 01:59:31 |
 woobilicious | Anyone here run a custom sinkhole (i.e. pi-hole) setup for bind9 or similar? Not a fan of pi-hole since it's just a fork of dnsmasq, with all its limitations, and I wanted to setup encrypted dns stuff | 06:19:55 |
| magic_rb | I do bind9 on top of dnscrypt-proxy2 | 09:06:01 |
|  @cinerealkiara:matrix.org left the room. | 11:08:09 |
| Acid Bong | when NetworkManager uses Resolved or Dnsmasq as a backend, do they run continuously or only update resolv.conf when called? | 16:05:10 |
| K900 | They are resolvers | 16:05:59 |
| K900 | They don't manage resolv.conf because resolv.conf is not sufficient to express the logic they implement | 16:06:10 |
