Melson's Blog

Peer-to-Peer Networking: Build a VPN Tunnel with Wintun on Windows - Part 2

Sat, 07 Mar 2026 02:21:23 +0530

This is a continuation of my previous post. The goal of this part is to understand in a simple way how Tailscale works behind the scenes on Windows using a L3 adapter called Wintun.

How Tailscale Peer-to-Peer Works

Majority of Tailscale’s code is open source, including DERP server which acts as a relay for peers when direct connection fails.

Since Tailscale’s codebase is pretty large, I won’t go deep into all their services. But if you want to understand how peer-to-peer works from scratch and eventually build your own, there are some good resources out there. I recommend starting with these two papers:

Building DNS-Based Service Discovery in Go Using SRV Records (Inspired by Kubernetes)

Sun, 22 Feb 2026 23:54:51 +0530

Understanding Kubernetes DNS and SRV-Based Service Discovery

I have been reading about Kubernetes DNS and going through its official specification available on GitHub Kubernetes DNS specification

After studying the documentation, I understood how Kubernetes performs internal service discovery using DNS. This led me to an interesting idea.

Can I build my own client-server application where the client only resolves a service name and protocol (like _servicename._tcp or _servicename._udp), and automatically retrieves the port from DNS, without hardcoding the server address and port number?

From Netalert to Domotz: Understanding Network Monitors and Building My Own

Fri, 12 Dec 2025 20:43:51 +0530

As a Network Engineer, I always wanted a network and service monitoring system that brings all the necessary tools into a single dashboard. Ever since I started self hosting services on my Raspberry Pi, my goal has been to run everything on it. Most tools are open source and available as separate services, but what really fascinated me was a network monitoring solution called Domotz which was previously known as Fingbox.

Both Domotz and Fingbox provide network monitoring through dedicated hardware. By using their own hardware, they can access the network more effectively with custom tools, without worrying about restricted environments. This makes their monitoring far more efficient.

Create a Custom Interactive Infrastructure Dashboards

Mon, 06 Oct 2025 23:44:37 +0530

Since I started self hosting a few services, I wanted a custom dashboard something like Grafana Canvas where I could monitor my entire infra and visulaize all my devices and their status on a single screen.

At first, I thought, “Hey, I’ll just design the whole device model with CSS!”

But then reality hit me… that would probably take a decade for someone like me who doesn’t have a frontend background 😅 Then I thought, “Why not ask someone who actually knows a thing or two about frontend?”

Why I Moved Away from Self Hosted Email

Thu, 02 Oct 2025 21:59:29 +0530

After self hosting my mail server at home on a Raspberry Pi, I frequently encountered internet stability issues. Sometimes, my fiber connection would get damaged due to nearby construction work, and other times, my ISP would schedule maintenance, causing outages that lasted for an hour or more.

These incidents made me realize that hosting my email server at home was risky, I could lose important emails if my internet went down. As a result, I started looking for alternative options like Mailfence, Mailbox and Fastmail. However, these services either offered only a free trial or limited storage (around 1GB), whereas I wanted a affordable and simple mail service with a decent amount of storage. And by default, domain registrars do not provide email services. If they do, it is usually a paid feature.

Self Hosting an Authoritative DNS Server for Your Domain

Mon, 29 Sep 2025 22:43:55 +0530

Introduction

After self hosting a few services at home, I found myself repeatedly logging into my domain registrar’s portal to add or map new IPs and subdomains. This back-and-forth process quickly became tedious. To simplify it, I decided to implement an authoritative name server for my own domain, hosted directly from home. Using an API driven approach, DNS records can now be updated anytime automatically, with Tailscale handling DNS updates for added security.

Understanding Recursive DNS Resolution

Sat, 20 Sep 2025 02:12:41 +0530

DNS: how It All Works

Ever wondered how DNS resolves domain names? How does it work behind the scenes? Well, In this blog, we’ll explore the fascinating world of DNS resolution. Whether it’s Google’s famous (8.8.8.8,8.8.4.4) or Cloudflare’s 1.1.1.1, you’ll finally understand what’s happening when you type a domain into your browser.

DNS: Your Internet’s Phonebook

DNS (Domain Name System) is basically the internet’s way of giving websites easy to remember names instead of expecting you to memorize IP addresses (because let’s be honest, no one remembers 172.217.14.206). No matter how often an IP address changes, you only need to remember the domain name, and DNS takes care of the rest.

Raspberry Pi Notifications with ntfy: Build a Home Lab Alert System

Tue, 16 Sep 2025 21:27:56 +0530

Even RaspberryPi Deserve to Be Heard

After self-hosting a few services and monitoring their state like the Raspberry Pi’s temperature, RAM, and disk usage I wanted a solution that could send me real-time notifications when certain thresholds were reached. I needed something reliable and privacy-focused, without relying on third-party platforms like Telegram bots that handle my data externally. That’s when I discovered ntfy. The best part? It’s completely self-hostable, and integrating it into my existing infrastructure was simple and seamless.

About

Mon, 15 Sep 2025 22:25:44 +0530

$(whoami)

Network Research Engineer by profession, hobbyist developer, tinkerer, and tech enthusiast.

BGP: Setting Up and Peering in the DN42 BGP Network Using a MikroTik Router

Wed, 10 Sep 2025 21:35:06 +0530

Introduction

As a Network engineer, I’ve always dreamed of announcing my own BGP routes and peering with others. I wanted the experience of running a decentralized BGP network not just in a lab environment, but in a real, persistent setup that could run indefinitely. After some research, I discovered DN42, a community driven platform that makes this possible without requiring expensive ASNs or public IP allocations.

With DN42, I can establish my own autonomous system, peer with other network enthusiasts, and even run my setup on a home router or a Raspberry Pi. This blog will document my journey into selfhosted BGP, the challenges I faced, and how I built my own decentralized network. If you’re a networking enthusiast looking to explore BGP beyond traditional environments, you’re in the right place!

Peer-to-Peer Networking: Build a VPN Tunnel with Wintun on Windows - Part 1

Mon, 08 Sep 2025 19:06:39 +0530

Introduction

I’ve been using Tailscale for years to access my home lab without the need for a public IP. Tailscale can be installed on almost any device, allowing you to securely connect and access them from anywhere. It works as a peer-to-peer, mesh-style VPN, is opensource, and completely free for up to 100 devices and 10 users. They also offer a business plan for larger setups.

What always fascinated me was how Tailscale works seamlessly across platforms like Linux, macOS, Android, and Windows. Since I use both Linux and Windows in a dual-boot setup, I started digging deeper. On Linux, it’s straightforward they rely on a TUN interface. But on Windows, I was curious about the Layer 3 adapter being used under the hood. After exploring the Tailscale GitHub repo, I discovered that it uses Wintun a TUN driver for Windows developed by the WireGuard project.

Self Host Your Mail Server at Home by using Raspberry PI

Fri, 05 Sep 2025 22:43:59 +0530

Introduction

I came across a few posts on the subreddit r/selfhosted about running personal mail servers on cloud VPS. That got me thinking why not self-host my own email server at home instead of relying on a cloud provider’s VPS?

This led me to wonder what I’d need to set up a fully functional email server for personal use. Rather than using a traditional server-grade PC. I decided to try it on a Raspberry Pi, which is small size and low power consumption make it an ideal choice for use as a home email server.

Learning

Mon, 01 Jan 0001 00:00:00 +0000

learning

Projects

Mon, 01 Jan 0001 00:00:00 +0000

projects

Uses

Mon, 01 Jan 0001 00:00:00 +0000

uses

Melson's Blog

Peer-to-Peer Networking: Build a VPN Tunnel with Wintun on Windows - Part 2

How Tailscale Peer-to-Peer Works

Building DNS-Based Service Discovery in Go Using SRV Records (Inspired by Kubernetes)

Understanding Kubernetes DNS and SRV-Based Service Discovery

From Netalert to Domotz: Understanding Network Monitors and Building My Own

Create a Custom Interactive Infrastructure Dashboards

Why I Moved Away from Self Hosted Email

Self Hosting an Authoritative DNS Server for Your Domain

Introduction

Understanding Recursive DNS Resolution

DNS: how It All Works

DNS: Your Internet’s Phonebook

Raspberry Pi Notifications with ntfy: Build a Home Lab Alert System

Even RaspberryPi Deserve to Be Heard

About

$(whoami)

Network Research Engineer by profession, hobbyist developer, tinkerer, and tech enthusiast.

More

BGP: Setting Up and Peering in the DN42 BGP Network Using a MikroTik Router

Introduction

Peer-to-Peer Networking: Build a VPN Tunnel with Wintun on Windows - Part 1

Introduction

Self Host Your Mail Server at Home by using Raspberry PI

Introduction

Learning

Projects

Uses