| ▲ | systemtest 9 hours ago |
| I'm a big VPN user since I am the citizen of one country and the resident of another. Even for government services I have to use a VPN. I tried to access the bureau of statistics of my home country through my foreign residential IP and got 404s on all pages. Enabled VPN and everything magically started working. For watching the election result video stream I also had to VPN but at least that one gave me a clear message. For doing taxes in my home country I then have to disable VPN since all VPN access is blocked but it's OK to use a foreign residential IP. I would easily pay €30 a month for a VPN in my home country that uses a residential IP and isn't noticeable. I am aware that those exist, but 99% of them are shady. |
|
| ▲ | devilbunny 9 hours ago | parent | next [-] |
| Do you have friends or family in your home country that will run an AppleTV box with Tailscale for you as an exit node? I can't get into work from a non-US IP, but I can Tailscale back to my house and it works just fine. I even gave my in-laws (who live several states away) an AppleTV box running TS just to have another endpoint if for some reason the power goes out at my house while I'm gone (rare, but happens). |
| |
| ▲ | drnick1 4 hours ago | parent | next [-] | | Why do you need an AppleTV box and Tailscale for that? Use any PC (even a Raspberry Pi or any cheap "thin client") with Wireguard and you remove Apple and Tailscale from the equation entirely while keeping your setup 100% self-hosted. | | |
| ▲ | varenc 3 hours ago | parent | next [-] | | Lots of people already have Apple TVs and the Tailscale integration is pretty good and can serve as an always online exit node. So no new hardware required. Could even remotely walk a non-techie through the process without too much effort. personally, I've just upgraded my family's wifi to Ubiquiti and can then use Tailscale Wireguard running on the gateway as a proxy! (with their permission) | |
| ▲ | devilbunny 2 hours ago | parent | prev | next [-] | | I don’t work in technology, so my knowledge base is almost certainly in the bottom 10% (or lower) of HN readers. I can install Linux, or a BSD, and following guides I can be reasonably certain that I am doing so safely, which puts me comfortably in the top 10% of all users out there. It’s not what I’m comfortable setting up for myself that is the issue; I am willing to put up with oddities for something that is just for my convenience and amusement. The problem is what I am knowledgeable enough to fix from far away if and when it goes wrong, and how to explain to my very non-technical family how to access it. I have a NAS, and I could roll my own with that (in fact it’s my exit node at home, because I’m fairly sure it has better encryption speed than the AppleTV), but when something I’m in charge of maintaining goes in someone else’s house, the last thing I want to spend my spare time doing is trying to diagnose and fix issues over the phone with people who don’t own a computer. It’s not the perfect solution to every situation. It is reliant on Tailscale and Apple, and there are cheaper, more capable systems (like the RPi) out there if you have the knowledge and inclination to set them up. But it’s a very, very straightforward solution that is unobtrusive and easy to maintain and thus is extremely well-suited for my needs. I thought it might be for OP as well. Anyone who is willing to shell out €360 a year for a truly residential-IP VPN should at least be made aware that it’s an option. | |
| ▲ | supermatt 3 hours ago | parent | prev [-] | | > Wireguard and remove Apple and Tailscale from the equation entirely I agree you could send them a preconfigured pi, but can we stop pretending talescale is just wireguard - there is a lot of convenience in the NAT traversal that you otherwise need router config and/or a publically routable server to achieve. | | |
| ▲ | drnick1 2 hours ago | parent [-] | | > but can we stop pretending talescale is just wireguard That's precisely the issue. It introduces additional centralized dependencies and closed source components. | | |
|
| |
| ▲ | ggrantrowberry 7 hours ago | parent | prev [-] | | What is this AppleTV box running TS that you speak of? Sounds awesome. | | |
| ▲ | ebb_earl_co 6 hours ago | parent | next [-] | | Check out the instructions from Tailscale: https://tailscale.com/kb/1280/appletv | |
| ▲ | left-struck 6 hours ago | parent | prev | next [-] | | Doesn’t have to be an apple box either. A raspberry pi is what I’m using. I’m in the exact same situation, living in one country temporarily but citizen of another, and I have an exit point in my home country at my parents place on a raspberry pi. Basically any computer will work. | | |
| ▲ | devilbunny 6 hours ago | parent [-] | | The advantage of the AppleTV is that it's basic consumer hardware that a lot of people have, that you can provide for them at a reasonably low cost if they don't, and that doesn't really require much in the way of tech skill for the person whose house it's in to keep it up to date. You don't even have to do anything to update versions - tvOS will do it automatically. I can't find it right now but there was a post announcing the port to tvOS on their blog where a developer from the UK (but living in the US) talked about how it let him buy, configure, and ship a simple consumer box that uses little power and needs minimal hands-on maintenance to his parents' house as a replacement for a server he had been running in their house as a VPN endpoint for this sort of thing - so he could watch BBC, etc. I wouldn't want to update a RPi that's in someone else's house on the other side of the ocean. |
| |
| ▲ | 6 hours ago | parent | prev [-] | | [deleted] |
|
|
|
| ▲ | xrmagnum 6 hours ago | parent | prev | next [-] |
| I built TunnelBuddy (tunnnelbuddy.net) just for this. I am the same: citizen of one country and resident of another. I have multiple friends and family where I am from. I get them to open tunnelbuddy (nobody needs to sign up), to share a one-off password (like TeamViewer) and I get to access the internet as if I was at their place. Underneath, it uses WebRTC (the same tech as Google Meet). It is free to use, I just built to fix this problem that I have... I am quite surprised expats only get by using a traditional VPN whose IPs are known by online services... |
|
| ▲ | chmod775 9 hours ago | parent | prev | next [-] |
| Do you know anyone in that country who will let you stick an rPI behind their modem? |
| |
| ▲ | withzombies 8 hours ago | parent | next [-] | | AppleTV has a Tailscale client that you can use an exit node. That's what I do to VPN back to home when I'm traveling. | | |
| ▲ | sgc 4 hours ago | parent [-] | | AppleTV is pretty random and only vaguely incidental to the solution. Tailscale runs on computers. Basically anything will do. If you don't have a home server, just grab a cheap RPi or an old laptop. Or in a pinch drop it onto an old phone from your old phone drawer. |
| |
| ▲ | systemtest 9 hours ago | parent | prev [-] | | I have been thinking about it but it is tricky from a legal standpoint. What I'm trying to arrange next time I visit is to have a secondary line installed at my parents place that is in my name. So that when I pull heavy traffic from that line it doesn't impact them and I can't get them in trouble for posting a message that isn't government approved. | | |
| ▲ | xandrius 8 hours ago | parent [-] | | Heavy traffic to access a bunch of gov websites? There's definitely more to your story then. I'd say, anything heavy and random, use the general VPN and the rest use an rpi at your parents' home. | | |
| ▲ | inemesitaffia 3 minutes ago | parent | next [-] | | Video. Live video | |
| ▲ | Aurornis 7 hours ago | parent | prev | next [-] | | > Heavy traffic to access a bunch of gov websites? There's definitely more to your story then They used government websites as an example, not to say that all of their traffic was to government websites. | |
| ▲ | JSR_FDED 6 hours ago | parent | prev [-] | | No it’s his parents who don’t want him interfering with their thriving warez empire |
|
|
|
|
| ▲ | simlevesque 9 hours ago | parent | prev | next [-] |
| > I would easily pay €30 a month for a VPN in my home country that uses a residential IP and isn't noticeable. I am aware that those exist, but 99% of them are shady. For residential IPs you can't even pay per month like normal VPNs, normally they charge per GB, usually over $2 usd per GB. |
| |
| ▲ | whatevermom2 an hour ago | parent | next [-] | | Prices are more in the 0.30$-0.45$ range if you know where to go, from my experience. | |
| ▲ | Scoundreller 8 hours ago | parent | prev | next [-] | | Damn, I’m throwing away hundreds of dollars per month. And I can get a semi-anonymous cable internet connection too (if your line is “hot”, you could sign up with any address… not sure if it has to be under the same node or just the same city). Would be difficult, but not impossible, to track down which residence the shadow connection is coming from. | |
| ▲ | nemomarx 9 hours ago | parent | prev [-] | | Is this be cause they're paying the residential proxy owners some of it? | | |
| ▲ | bakugo 8 hours ago | parent | next [-] | | Most of the people whose devices and connections are being used as residential proxy exit nodes are not aware of it. They likely charge per GB because these residential connections are slow and limited compared to datacenter connections (doesn't help that they're often located in third world countries), and are often used for aggressive scraping, so charging a fixed monthly price would not be viable. | |
| ▲ | aryonoco 8 hours ago | parent | prev [-] | | I can assure you they are not. |
|
|
|
| ▲ | jddj 8 hours ago | parent | prev [-] |
| Just get a sim card from home with roaming and use that data to access govt things? |
