blumeops

History

Erich Blume 12b2786ca2 All checks were successful Deploy Fly.io Proxy / deploy (push) Successful in 1m59s Details Route Fly proxy through Caddy on indri for direct WireGuard peering Tailscale Ingress pods in k8s can't establish direct WireGuard connections (stuck behind pod-network NAT → DERP relay → 20s latency). Indri's host-level Tailscale CAN peer directly with Fly. Change all nginx upstreams to route through Caddy on indri instead of per-service Tailscale Ingress endpoints. Tag indri as flyio-target in the Tailscale ACL so the Fly proxy can reach it. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-18 09:40:20 -07:00
..
gandi	Expose Forgejo publicly at forge.eblu.me (#278 )	2026-03-03 08:40:41 -08:00
tailscale	Route Fly proxy through Caddy on indri for direct WireGuard peering	2026-04-18 09:40:20 -07:00

Deploy Fly.io Proxy / deploy (push) Successful in 1m59s

Details

Route Fly proxy through Caddy on indri for direct WireGuard peering

Tailscale Ingress pods in k8s can't establish direct WireGuard
connections (stuck behind pod-network NAT → DERP relay → 20s latency).
Indri's host-level Tailscale CAN peer directly with Fly.

Change all nginx upstreams to route through Caddy on indri instead of
per-service Tailscale Ingress endpoints. Tag indri as flyio-target in
the Tailscale ACL so the Fly proxy can reach it.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-18 09:40:20 -07:00

gandi

Expose Forgejo publicly at forge.eblu.me (#278 )

2026-03-03 08:40:41 -08:00

tailscale

Route Fly proxy through Caddy on indri for direct WireGuard peering

2026-04-18 09:40:20 -07:00