Comment

Comment on Access home server from anywhere

I would go with wireguard VPN or something like cloudflare tunnels or tailscale. With wireguard you’ll need to open up an external port and forward to your VPN host, but wireguard uses UDP so no one can probe it for responses. CF tunnels and tailscale you don’t have to open up holes in your firewall which is nice.

You also have the option of using a proxy and opening up 443 publicly on your firewall, but unless you know what you’re doing I’d leave that closed until you learn more.

source

Sort:hotnew top

NaibofTabr@infosec.pub ⁨1⁩ ⁨year⁩ ago
Nah, that sounds complicated. Just open port 22 and forward it your server.

source
- idunnololz@lemmy.world ⁨1⁩ ⁨year⁩ ago
  Trueeeeeee. Then post your ip here so you’ll remember it later.
  
  source
- jaykay@lemmy.zip ⁨1⁩ ⁨year⁩ ago
  Thanks, doing that now ;) /s
  
  source
jaykay@lemmy.zip ⁨1⁩ ⁨year⁩ ago
Mmmmmm, tunnels sound boring haha I might try figuring out wireguard. Do you have any trusted guides on it? Or should I just google :P

source
- bless@lemmy.world ⁨1⁩ ⁨year⁩ ago
  Good thing about wireguard is it’s really simple. Google should get it done, if you get stuck send me a DM. I started with basic wireguard, I now run firezone in docker as I like the frontend.
  
  source
  - jaykay@lemmy.zip ⁨1⁩ ⁨year⁩ ago
    (I’m gonna copy what I said in another comment lol)
    
    I don’t know if I’m shooting myself in the foot by trying to do in docker for now or not, but I’d rather do that before I do it on bare metal. It seems to work already, as I can see that my IP changes on my phone when I access it. Hell, I can even access my routers’ dashboard. However, I still can’t access the services on the server (by IP, like 192.x.x.x:8989), which I can access if I’m on Wi-Fi. So I’m trying to figure that out. Any ideas?
    
    source
    bless@lemmy.world ⁨1⁩ ⁨year⁩ ago
    Hmm do a traceroute and see where it’s dying. Can you ping inside IP of the tunnel on the wireguard server? What about outside?
    
    What did you deploy in docker, firezone or basic wireguard?
    
    Does your phone say connected and you see both incoming and outgoing packets? Is there a firewall in place on the wireguard host (ufw maybe)?
    
    If you have nmap available you can also check port status.
    
    source
    -> View More Comments
- sunbeam60@lemmy.one ⁨1⁩ ⁨year⁩ ago
  Honestly it couldn’t be simpler. Look at wg-easy docker container. You’ll be up and running in 10 minutes.
  
  source