In my mind, all clients should send data directly from device to relays without anything in between, but hey, I’m not a dev. And not convinced perhaps there isn’t some setting in Portainer blocking the connection. Yeah it is kinda cool though to use my own hosted client and relay in my (relatively) secure Tailnet. However noStrudel is not my preferred day to day client (that and Snort, which I may try, are the only prepackaged ones on Umbrel).
Well, at least this solves the problem! 🤣 Seriously now, hosting your own Nostr client isn't a bad idea. I honestly don't know the specifics of how noStrudel writes events to relays (this is a good question for nostr:nprofile1qqszv6q4uryjzr06xfxxew34wwc5hmjfmfpqn229d72gfegsdn2q3fgpzfmhxue69uhkummnw3e82efwvdhk6tcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhszythwden5te0dehhxarj9emkjmn99urf278z). Assuming it's just opening a WebSocket directly from the browser, it should work fine. If it's doing anything more complex (i.e. some sort of backend, proxy, etc.), then the nostrudel.ninja/ version won't have access to your relay, while your local client will as it's on the same network. I know for sure that nostrudel.ninja can read from local relays, as shown in my screenshot above. I had a strong impression that the hosted version would also be able to write to local relays, but given your observation, I might be wrong.
Discussion
Yeah, in theory, Nostr is simple enough. But once you're running a client, there are plenty of valid reasons to have a backend handling WebSocket connections, proxying, caching resources, and so on.
I'm not bad-mouthing Umbrel by any means, but you might as well deploy all of this somewhere else so you don't have to worry about your BTC / lightning stuff. Docker (or better yet, Podman), Portainer (if you really need it), and open source VPNs will run pretty much anywhere. Find one of your old PCs or laptops, rent a cheap VPS, or buy some low-cost hardware, whatever works for you. Install your favourite Linux distro and off to the races you go.
I don't use Snort, but its repo has a pretty straightforward Dockerfile, so you're likely just a couple of doocker or podman commands away from running Snort locally anyway.
Yeah Umbrel is not very flexible or customizable, but it's simple, plug and play (I appreciate simplicity more and more the older I get). Portainer is by far the most complex thing I've done on Umbrel. My Linux days were long ago and I'm revisiting them (other than Umbrel I'm running Linux on an old iMac) but I don't want something that needs constant maintenance and troubleshooting. Umbrel has been running solid for me with little to do keeping it going. I do appreciate all your help, this has been educational for me, thank you.