Edit: I've made some progress if you want to read the edits at the end.

Last year I started slowly planning out a home server setup with help from Tildes. I've gotten a few things up and running, but have been bouncing off a variety of walls trying to get to the next step.

The first goal was-
"Ok i've got Cosmos up and running for local access using self signed certs. I'd like to get it up and running using lets encrypt and a domain so I can eventually start giving a few family and friends proper logins and external access". Of note, ideally,

This led to a second goal of-
"Gosh it sure would be nice if I didn't have to be sitting at the physical server to do testing and could instead be at another computer in my house. I should probably configure ssh locally (working) and get it to forward windows so I can work in other rooms (not working...)"

"The stack":

Server - MS01 running LTS Ubuntu with Cosmos Cloud installed (well it was, but is currently not)

Router - Ubiquiti Dream Machine Pro (of note i've done some minimal guided config of this to try and harden it at a basic level so my cameras and IoT devices are better isolated. Not fully default, but the server is, for now, in the same network/vlan as the rest of my main computers so don't think this should matter.)

Clients - All local windows 10/11 machines for now, although in the off off chance it matters, i'm running nushell in the terminal

Domain Provider - Cloudflare

The SSH Problems:

I have a friend who's set SSH up for themselves with their home server, however they haven't had time to come over and troubleshoot. My rough understanding is "setup VcXsrv, change some configs, then it just works.". Windows these days has ssh built in, and I can SSH to the machine just fine with my key.

ssh -X...less so. I've read some docs, followed some guides, tried copilot, and it all leads to "yeah should work" and it just doesn't. I have configured a ssh config on both machines to allow X11 forwarding, i've started the XLaunch making sure I disable access control, made sure my unbuntu login isn't on wayland and so on. So far, no dice.

If someone has an end to end guide they trust to link, i'll gladly read and start from scratch. I've been cobbling together so many sources at this point i'm very lost. Lots of things jump quickly to "well just use WSL", which yeah ok i probably should test that next, but I was hoping I wouldn't need to (and am unclear if that'll even help).

The HTTPS/Domain Problems:

So..cosmos cloud.

I like the theory behind this software in that it helps enforce best practices so you don't blow your own head off when you screw something up. Maybe it's not the absolute best starting place, but getting it running without a domain was trivial, and more importantly, shockingly well documented. Not perfect, but for what I understand is mostly a one man show it's better than a lot of professional grade stuff i've dealt with.

And so I figured it'd be easy to just do the setup from scratch but choose https and point to my domain. There's been two attempts here, no DNS challenge and DNS challenge

No DNS Challenge Method

Per their docs it seemed easy enough. I'd never touched a DNS screen before but I configured an A record pointing at my WAN IP (eventually...) and disabled the cloudflare proxy.

Well going to that domain took me to my router login. Hmm. After screwing around with port forwarding and router DNS records I never got it to work and felt like I was playing with fire, so undid everything I'd done and decided I'd try the DNS challenge. Of note I could still access the cosmos cloud page from http directly to the IP, where it confirmed it failed to get the TLS cert, but https to the domain wasn't having it.

DNS Challenge Method

This seemed like I was close, and then nothing. I have no idea if i need to do internal routing on the router for this, it just sorta says "Do the DNS challenge, here's a form, you don't need to fill out all of it" which uh...ok.

I filled out what I think I needed to after setting up a token(not an API key) in cloudflare. I'm pretty certain I got that correct as I saw text files with keys created on cloudflare's DNS page and had I screwed that I'm guessing it couldn't have.

However from what I can tell, that's as far as it got. The files nuked themselves 2 minutes later when the TTL expired, and going to the domain locally gave me the cloudflare "our shit's fine, the server is timing out" page. From what I could tell diving into logs, cosmos had the same error, and I couldn't hit cosmos at all, even using the IP and http.

I do however wonder if maybe it did work BUT since I undid the router DNS record before trying this maybe that killed it? dunno.

Any ideas?

That's basically my situation. Figured i'd throw it here and see if anyone has some guidance or troubleshooting they'd recommend. Aforementioned friend who's done some of this before should be free one of these weekends and can probably help, and I haven't tried again since the second attempt. I've thrown some of the questions i've had on the discord and gotten minimal response(although I'm kinda using the thread as a rubber ducking spot as well). Next attempt is probably just DNS challenge again after more research on it and seeing if that works if I put back on the router DNS record, but i feel like logically that shouldn't work.

Oh also if anyone has some general recommended reading so that I can really understand what the hell it is I'm doing I'd love that. There's a ton of networking books/articles/etc, and in general I'd like to learn more about the subject, but I'm curious if there's a go to for people who are techy and trying to dip their toe in all of it the same way I am and setting up a proper home network and server.

Edit:
So after lots of testing, doc reading, and help from the cosmos discord I:

1. Got the DNS challenge to work according to the cosmos logs.
2. narrowed down that the main issue was my UDM pro router policies. Needed a firewall rule and a port forward, and had only done one of those at a time in my various attempts and not realized they were really different.

Now once that was all working and I could hit the site i was getting "likely a false cert" errors, but since i've got all the pieces I'm probably going to try another clean install later and see what we get. Hurrah for troubleshooting, good docs, rubber ducking, and helpful humans.

I know if I posted that on Reddit, all the top answers would be something like "Money"or "It lets me survive" but I'm looking for something deeper than that.

I'm a teacher and school just started where I lived and I realize how much freedom the job gives me. I can considerably modify how my day will go as long as the students learn the curriculum. I love that freedom.

I also love the human nature of it. I get to know and see 100 kids develop every year, plus, I teach juniors and I've had a lot of my last year students stop by me to say hello and talk about their summer or their current teachers. It's fun having all these random positive conversations every day.

I get to learn a lot about people and about me. I love that growth.

What about you?

Have you watched any TV shows recently you want to discuss? Any shows you want to recommend or are hyped about? Feel free to discuss anything here.

Please just try to provide fair warning of spoilers if you can.

What have you been listening to this week? You don't need to do a 6000 word review if you don't want to, but please write something! If you've just picked up some music, please update on that as well, we'd love to see your hauls :)

Feel free to give recs or discuss anything about each others' listening habits.

You can make a chart if you use last.fm:

http://www.tapmusic.net/lastfm/

Remember that linking directly to your image will update with your future listening, make sure to reupload to somewhere like imgur if you'd like it to remain what you have at the time of posting.

There was some discussion here when the earlier singles for this album came out, so I figured it was worth posting the full album now that's out (as of today, September 5).

https://ladispute.bandcamp.com/album/no-one-was-driving-the-car

Have you listened yet? What do you think? Standout songs? What did you think of the rollout for this album? (If you're unaware, the band released nearly the full album, except for the final two songs, over the past several months. They essentially released each "chapter" in the story of the album as individual EPs or singles.)

For me, this is miles better than PANORAMA was, and I'm glad that I held off on listening to anything after Environmental Catastrophe Film was released until this full album drop. I sort of hated the rollout for that, but I also think I understand why they did it.

I don't think it tops Rooms of the House, but it's absolutely among the band's top three (with Wildlife being the third in that mix). It really does feel like a mashup of the urgency/aggression of Wildlife and the artistry of Rooms of the House, and brings in some of the band's spoken word releases as well.

Environmental Catastrophe Film is the best song on the record, but that was going to be hard to beat because it may be the band's best song in general -- certainly their best song in a decade. Steve has also caught my attention each time it's come up in my play throughs.

This is the seventeenth of an ongoing series of book discussions here on Tildes. We are discussing Cats Cradle by Kurt Vonnegut. Our next book will be Stories of Your Life and Others at the end of September.

I don't have a particular format in mind for this discussion, but I will post some prompts and questions as comments to get things started. You're not obligated to respond to them or vote on them though. So feel free to make your own top-level comment for whatever you wish to discuss, questions you have of others, or even just to post a review of the book you have written yourself.

For latecomers, don't worry if you didn't read the book in time for this Discussion topic. You can always join in once you finish it. Tildes Activity sort, and "Collapse old comments" feature should keep the topic going for as long as people are still replying.

And for anyone uninterested in this topic please use the Ignore Topic feature on this so it doesn't keep popping up in your Activity sort, since it's likely to keep doing that while I set this discussion up, and once people start joining in.

Tonight at 7 pm Central/8 pm Eastern, there is a free workshop/training to help people learn how to make book résumés for highly targeted books. These would then go on the Unite Against Book Bans website.

Quote from the UABB website on what a Book Resume is:

Book Résumés help teachers, librarians, parents, and community members defend books from censorship. They detail each title’s significance and educational value and are easy to share with administrators, book review committees, elected officials, and board members.

Their goal is to create a process for sourcing these résumés from the community because the ALA cannot keep up with demand (and is drowning with budget cuts).

The registration link for the training is here:
https://givebutter.com/R0SVw9

I joined their waitlist last month and still didn't get an invite, now they even have mobile apps but still invite-only... so any chance I can get an invite code from someone here 👉👈. I just want to try and see what it's like

Edit: I didn't expect so many comments, I hope everyone gets an invite! but I just want to say, it seems it doesn't work the same way as tildes and from what I can tell, you need to be a "Groundbreaker" to create invites and only 2 invites can be created? (would appreciate if someone can clarify that in the comments) and I'm personally not able to create invites from my account unfortunately, otherwise I would've sent an invite to everyone who commented. :(

What have you been watching and reading this week? You don't need to give us a whole essay if you don't want to, but please write something! Feel free to talk about something you saw that was cool, something that was bad, ask for recommendations, or anything else you can think of.

If you want to, feel free to find the thing you're talking about and link to its pages on Anilist, MAL, or any other database you use!

What have you been doing lately for your own fitness? Try out any new programs or exercises? Have any questions for others about your training? Want to vent about poor behavior in the gym? Started a new diet or have a new recipe you want to share? Anything else health and wellness related?

A lot of people are familiar with body fat percentage, BMI, etc. Personally, my BMI has been 'better' when I've been less healthy, and generally worse as I've been more healthy. Body fat percentage is difficult to actually measure. So every few months, I look for metrics that fit my biases. For example:

• Jeff Nippard's Noob to Freak Benchmarks - I like these primarily because it's a multiplier on bodyweight. Additionally, he makes a good argument for why you'll never get past "Intermediate" due to the work and sacrifices required.
• StrengthLevel - If you want to compare yourself to people of similar weight, age, and gender. You can see the "novice", "intermediate", etc. break downs of your lift for your cohort.
• Ready for Labour and Defence was a USSR and now modern Russia series of benchmarks of health. It includes pull-up goals as well as how far you can throw a grenade. Can't say I've applied these but I like the concept.
• Anime Workout - Solo-Levelling, One-Punch Man. Why wouldn't you want to be an anime hero?

If possible, explain why it's your "favorite." Can be everything from accuracy, to ease of application, or you just being really good at it.

For me:

• Squat, Deadlift, and Bench - 1x Bodyweight x 10 reps (e.g., a barbell squat where you're lifting your body weight) - I like the idea that I can truly support my own weight.
• Being able to do unassisted pullups
• 100 push ups, 100 pull ups, 100 squats - it's completely arbitrary, based on a base 10 number system, but for that same reason it just feels like a good "benchmark."
• Your 30 minute run distance / speed - 30 minutes is relatively long, so I like it as a measure of realistic improvement, rather than thinking about outlier improvements in speed or distance that might go away the next week.
• Enough hours of sleep and a normal sleep schedule for 1 month - This is hard for me, but feels great when I'm in the swing of it.
• Doing some kind of activity every day for at least 1 month - Even if it's just 15 minutes of stretching, I know that it means something to "try."

Add awesome game deals to this topic as they come up over the course of the week!

Alternately, ask about a given game deal if you want the community’s opinions: e.g. “What games from this bundle are most worth my attention?”

Rules:

• No grey market sales
• No affiliate links

If posting a sale, it is strongly encouraged that you share why you think the available game/games are worthwhile.

All previous Save Point topics

If you don’t want to see threads in this series, add save point to your personal tag filters.

Have you watched any movies recently you want to discuss? Any films you want to recommend or are hyped about? Feel free to discuss anything here.

Please just try to provide fair warning of spoilers if you can.