• 1 Post
  • 10 Comments
Joined 21 days ago
cake
Cake day: June 18th, 2026

help-circle




  • Lots of good suggestions.

    The simplest answer assumes you have a router with a firewall that you can configure.

    The basic idea is a deny rule targeting the ‘source’ IP address from reaching the ‘destination’ ip addresses.

    There are various ways to do this, the best way will be very precise. Some folks have said separate VLAN, very good practice but not required. Some folks suggest pihole, thats really hit or miss unless you know your device relies explicitly on DNS and you also know how to manage that.

    It will be easies for you to learn the basic traffic policy before proceeding to other more advanced suggestions, but you will have to probably at least learn that bit of network security to attempt this task. Low difficulty in the grand scheme of things networky.




  • Oh, you definitely got why I’m against Cloudflare…

    Cloudflare has bot-mitigation built in, sure. So why would someone Anubis between their app and Cloudflare as it fulfills it’s reverese proxy role, idk. It seemed like that person was trying to explain to me where Anubis was supposed to fit in sequence here. It’s meant for the reverse proxy scenarios specificed in the example (nginx, Caddy, and others)

    You are also correct. The “free” DDoS mitigation is an irrelevant argument against the privacy implications of using Cloudflare. Cloudflare isn’t the only DDoS mitigation option.

    *BuT iT’s FrEe! *

    Is it, really?