My PaaS I use to run containers uses docker swarm, which uses a userspace L3 connection proxy (even though only one box), which means my main nginx rproxy/tls endpoint doesn't see client IP, which means mastodon's rate limiting (which has no off switch) breaks constantly.
so now i might have to rent a vps just to run mastodon. or switch to pleroma.