Comment on New server for the family, Proxmox or TrueNAS, LXC or Docker?
Kroxx@lemm.ee 3 weeks ago
To expose your services easily and securely look up tailscale it’s completely free and is setup per device, ex download on your moms phone and you can manage that phones access.
Tailscale uses wiregaurd and some weird ass NAT magic to make every device have direct connections to each other creating a “tailnet”
It’s a zero trust architecture so you have to whitelist every device on it. What that means practically is it’s very difficult to compromise and that’s by it’s nature. You don’t have to have a high technical level to be very secure using tailscale.
There is also twingate which I think is similar but I’m not as familiar with twingate
RedBauble@sh.itjust.works 3 weeks ago
I had thought of that, I didn’t really like the idea of using a third party service to access my machines.
Also I didn’t mention in the post, but, while my ISP gives me a public IP, I only use port forwarding to wireguard into my home networks. My services are exposed via a vps hosted on oracle cloud free tier free, which forwards public traffic to my server via another wireguard connection
brygphilomena@lemmy.dbzer0.com 3 weeks ago
Headscale is a locally hosted version. You can also just manually do wire guard. But tailscale is just a management tool for setting up an overlay network using wire guard.