> it's nonsensical to say tailscale works in places where wireguard is blocked
I have two machines on my desk, I configure a wg service on both. I also configure tailscale on both. Everything works.
I move one machine to another network, at a friend's place.
Wg does not work anymore. Tailscale works. So this is very much sensible to say what GP said.
Now, you can have all kinds of explanations about why wg dos not work and ts does, you know STUN, DERP, ts using wg under the hood, and whatnot but the facts are cruel: I cannot wg to my machine, but I can ts.
Right, it’s that specific person’s Wireguard configuration, which is likely a typical one as a result of Wireguard‘s defaults. Tailscale‘s defaults work better, hence the surface-level impression that plain Wireguard does not work in cases in which Tailscale does.
As I said above - how would you set up plain Wireguard in a place without the possibility of exposing a port, or even that does not have a public IP - and initiate the connection from outside that place? I would love to learn something. Without rebuilding tailscale (or whatever other solutions with STUN or whatnot).
i think youre not hearing what - at least i - was saying.
I never said that running the same connectivity and NAT traversal via 2 nodes which are both inside of a NAT is possible.
Neither did I ever claim you dont need a static public IP which _isnt_ behind a NAT / has an open port.
With Tailscale, these are being provided to you by them.
Without them, you would have to maintain that yourself.
This is a significant maintenance burder, which is why I - as in my very first comment you yourself responded to - pointed out that the service theyre providing is great and that i use it myself for that as well.
Nonetheless, _if wireguard was blocked, tailscaile wouldn't work either_
But its not blocked. Hence tailscale works. Just like wireguard would work, if you configured NAT traversal in some way.
To get that working, you have multiple options, one of these being the STUN server.
Another being an active participants in the VPN which facilitates the connection (not just the initiation, which the STUN server would be doing). easier to configure and maintain, but less performant.
Tailscale themselves actually have an incredibly indepth article on how they've implemented it on their end, its a little aged at this point, but I suspect they havent changed much (if any) since
> i think youre not hearing what - at least i - was saying.
You said " it's nonsensical to say tailscale works in places where wireguard is blocked".
If by "blocked" you mean "blocked at the firewall level through some kind of adaptive block that will recognize a wireguard connection based on its behaviour/nature of packets/whatever" → then yes, of course tailscale will not work either as it uses wg under the hood.
If the OP message "tailscale has a much better chance to work when you need it most. WireGuard is blocked by too much stuff" means "I installed wireguard and it does not work (because whatever) but tailscale consistently delivers" → then it is not nonsensical at all. It is the right tool to start with.
> Tailscale themselves actually have an incredibly indepth article on how they've implemented it on their end
This is an excellent documentation to which I refer people as well.
> even if he's proud of being such, as you seem to be
Of course on Internet nobody knows you are a dog. But hey, I may be someone who wrote a part of the Linux kernel in 1994, ran IT operations for a company that was big (big!) and then almost vanished (not my fault :)) and produces open source that you may have even used if you are "technical" as you say.
And set up WG in so many places, including a frontend that unfortunately did not get the worldwide success it should have :)
With this modest introduction - tailscale works where wireguard does not. I am not sure why my example was not obvious. You can reach the machine at my friend's with tailscale, not with plain wireguard.
Of course if you open ports in the right places then yes! And check a few more things.
Now - how would you set up plain Wireguard in a place without the possibility of exposing a port, or even that does not have a public IP - and initiate the connection from outside that place? I would love to learn something. Without rebuilding tailscale (or whatever other solutions with STUN or whatnot).
Hernàndez was captured by Biden. Trump pardoned him because Biden bad.
This world is a shitshow. Honestly, I am GenX and always read of wars and tensions as historical artefacts (there were wars, but localized and far away from France).
Now I am seriously wondering if this is going to end well for us over here. I do not work that much about myself, I had an interesting life, but rather about my children whom I now start to regret. I did not expect to hand them a world like this one.
I know, global warming was there but I was 30 and was looking my close surroundings. My bad. This said, if I know what the world would be today I wrote reconsider having them.
What is really blocking the move for me is zScaler, Zoom (they may exist on Linux, not sure about how integrated they are) but especially Outlook (the client). The OWA version is subpar and without it I cannot function in a work environment.
> without it I cannot function in a work environment.
This is more about what you choose as your operating environment, not what your work imposes as your working environment.
Most places of work, mine included, run Microsoft services that lock them into the ecosystem incredibly tightly.
As per the article title, "if you want to feel like you actually own your PC", this is about your PC, not the one provided to you by your workplace (since it's likely owned by them).
One thing I'm worried about in my work environment is Microsoft enforcing the web versions of Office and deprecating the stand alone desktop applications. The web versions are a massive step down in terms of functionality and ease of use. Your mention of OWA makes me feel as if that is what Outlook will be sacrificed for at some point in the future anyway.
I had a similar issue, but I ended up installing Debian and running Windows 10 as a virtual machine with VirtualBox. The webcam can be accessed as if were installed on the guest OS and haven't had a problem with Zoom or Teams. Just sharing in case it helps.
I considered that but is is such a waste of resources in my case: I deliberately use a lighter laptop that just covers my dev needs.
But yes, this is a possibility, or accessing the windows via rdp. The loss would be with the "always-handy" kind of setup, where Outlook is a click away and pops up its calendar reminder
We have the same with fiber to the home in France. When a company lays the fiber, they have to allow others to use it too (they are paid for that service, but the amont is regulated).
When fiber arrives, there is a 3 months waiting period before any company can provide the service. This is intended to give enough time for everyone to prepare an offer.
When I got mine, I called the regulation authority (Arcep) who gave me the date and hour my line opens. On that day I called my preferred provider who told me "it is coming! we will call you!" and then the one who laid the cable who told me "we can come in 2 days". I chose the latter.
A few years later the preferred one finally made its way to my area...
> Self-hosting has always been hard, and it's not getting easier.
Oh yes it is. I already self hosted stuff back in 2000 and it was very hard. Then came docker and it is very simple now.
Sure "very simple" mean different things to different people, but if you self host you need to know a lot already.
This is somehiw similar to amateur electronics. You used to do 100% yourself from scratch. Now you have boards and you can start in z much simpler way.
The fish I’m talking about include hungry homeless people, poor people that need clothing, and young people dealing with unexpected pregnancies. There are ministries for all of those here, staffed and funded by churchgoers.
Maybe think about it, see if there are some fish you could pick up.
Helping in these areas is what makes us human. If you need to invoque a deity to explain the action, good for you. The most important part is that help is provided.
Now, unexpected pregnancies is not the strong part of Christianity. When you start to promote teaching about sex and birth control we can talk.
You’re right, those fish are not specific to religious people. But it is true that religious people give more time and money to them. Less religious people tend to give and volunteer less for such causes. I offer no judgement or theories about why, but the data is strong.
About the sex ed., the clinic I volunteer at offers pregnancy related information, including pamphlets that explain pros and cons of things like the ‘day after’ pill. Of course the preferred option is always ensuring good parenting for the newborn child. Clients can take video classes on parenting skills to earn reward points good for diapers, baby food and clothing. It’s really a good program, provided free to the people who need it.
> But it is true that religious people give more time and money to them. Less religious people tend to give and volunteer less for such causes. I offer no judgement or theories about why, but the data is strong.
You may want to look at https://pubmed.ncbi.nlm.nih.gov/38407059/, a large mets-data study. Religious people give more when this is public, and vice-versa. I offer no judgment on that either :)
> About the sex ed., the clinic I volunteer at offers pregnancy related information, including pamphlets that explain pros and cons of things like the ‘day after’ pill. Of course the preferred option is always ensuring good parenting for the newborn child. Clients can take video classes on parenting skills to earn reward points good for diapers, baby food and clothing. It’s really a good program, provided free to the people who need it.
I volounteered for a long time at an organization that provided the same services. We provided information about abortion, pills, medical facts. Everything was on the table, from an abortion to raising your child.
Do your pamphlets address abortion as one of the solutions, making it at par with giving birth? I unfortunately know about "help centers" for pregnant women who were in fact driving them away from some solutions (mostly abortion). They were fortunately made illegal in France because everyone should have a neutral, unbiased access to information and help (including abortion).
For reference, Total Fertility Rate in France is 1.66 vs 1.60 in the US.
Teen pregnancy is four times lower in France - because we do serious sex ed and people have sex knowing what to expect.
... when in public view. Vanity and all this. Non-religious people are happy to keep their generosity to themselves.
> What made you stop volunteering at the clinic?
I started to travel the world. This was also a time where I experienced first hand how religion impacts people. So far in France we were shielded from that.
The point remains that religious people give more time and money to charitable causes than non-religious people. The motivators may be sinful (vanity, etc), but the good works are what should matter. Better to have hypocrites feeding the hungry than no food at all.
I’m glad to hear you’re getting to see the world. I hope your journeys are enjoyable.
No, you are not getting the point. Giving is not related to religiousness. So there is no need to state this as this is factually wrong. We give as much as you do, without making it public for everyone to see.
> The studies ( and they are many ) show that religious people give more.
I provided you a meta research covering several thousand cases. Feel free to provide yours.
> You were trying to argue about why religious people give more, now you abruptly switch course to saying they don’t.
Absolutely not - my point was that everybody gives the same, no matter the religiosity (and the research says so). Religious people just make it public. Why this is the case is left to them and their conscience.
If you want to have an informed discussion, you must be ready to face the numbers. But science and logical thinking is exactly the opposite of religion so if you are blinded by it, well that's it.
I have had numerous discussions over the years about religion (including a well-known radio program). Whenever it came to facts, suddenly there was a lot of hand waving and trying to move the discussion elsewhere.
But you are right - we got to a final point. Happy Christmas and New Year (yes, I am happy Christmas is there even though the religious part is irrelevant -- I like the family traditions)
Surely by now you must have noticed that the Right is completely uninterested in solving these things? Cutting social nets and criminalizing abortions will only aggravate these important issues.
Also, I don't see why caring about the homeless prevents also fighting rampant gambling addictions?
The homeless meals and clothes closets have been in place for years. Through administrations and legislatures of all kinds. Nobody ‘solves the problem’, unfortunately.
There are limited resources. That’s why you see churches feeding the hungry and clothing the needy, but probably not fighting gambling so much. People are only able or willing to give so much.
I understand, but I doubt that OP meant "individual churches" when speaking of the "Christian Right". More likely, he meant the evangelical movement currently controlling all branches of government, and the people that give it sufficient mandate to tear through the social nets actually able to releviate these issues.
Yes we do because some religious people have the annoying habit to stick their nose in other people business (and laws) so they should be faced with their hypocrisy when the pure, "natural laws" get in their way. Or the rulings of their book of choice.
I think "Mein Kampf" is the equivalent of celebrity gossip: you are very superficially interested because why not. The depth of the book is similar to the depth of this gossip's interest.
I had a look at the book a few years ago. After a few pages (somewhere in the middle of the book), you can see the writing style (not very good, overexcited, and that would appeal to people who look for it), but it would take longer to get a grasp on the content.
Now if the (otherwise very kind) guy in charge of the Bureau international des poids et mesures at Sèvres who did not let me have a look at the refrerence for the kilogram and meter could change his mind, I would appreciate. For a physicist this is kinda like a cathedral.
If you ever are in Paris, I can't recommend the Musee des Arts et Metiers enough.
I believe they have the several reference platinum kilograms that are now out of spec. [1]
they also have the original actual Foucault pendulum that was used to demonstrate Earth's rotation. (and a replica doing a live demo, of course)
They have so many incredible artifacts (for weights and measures but also so much more: engineering, physics, civil engineering, machining,...)
I don't know if you will be reading this, but I am just back from that museum. Thank you very much for the information.
I spent 4 hours to there and was surprised to see so many tourists, this is not a place I expected people visiting Paris to go to. There were no crowds though.
The top part is really great, you get to see how much people did with so little. So is the chemistry part.
I found the steel replica of the kilogramme and the meter, and of course the Foucault pendulum (in the neighboring refurbished church).
This is truly an interesting museum, on part with the museum of discoveries (musée de la découverte) which is unfortunately close now for a few years for renovations (or at lest was recently planned to be closed). Much better than La Vilette.
Ahhh, thank you for the tip. I live in Versailles and usually go to museums for art, but this would be wonderful as well.
The Musée de Sèvres (or Bureau des Mesures as it is called now) has the original kilogramme and meter iridium reference, hidden in the basement ;( So if the director has a change of heart, I am all in!
I have two machines on my desk, I configure a wg service on both. I also configure tailscale on both. Everything works.
I move one machine to another network, at a friend's place.
Wg does not work anymore. Tailscale works. So this is very much sensible to say what GP said.
Now, you can have all kinds of explanations about why wg dos not work and ts does, you know STUN, DERP, ts using wg under the hood, and whatnot but the facts are cruel: I cannot wg to my machine, but I can ts.
reply