this post was submitted on 18 Aug 2023
48 points (94.4% liked)

Selfhosted

37811 readers
517 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
48
Reverse Proxy vs VPN: How do you access your home-server? (feddit.de)
submitted 10 months ago* (last edited 10 months ago) by moddy@feddit.de to c/selfhosted@lemmy.world
48 comments fedilink hide all child comments
 

The more I am selfhosting the more ports I do open to my reverse proxy.

I also have a VPN (wireguard) but there are also 3 family members that want to access some services.

Open ports are much easier to handle for them.

How many users do you have and how many ports are open?

My case: 4 users (family)/ 8 reversed proxy ports

How many users and open ports have you?

you are viewing a single comment's thread
view the rest of the comments
[–] oendha@jlai.lu 3 points 10 months ago

Currently I expose port 22 for SSH, 443 for Nginx and a couple extra for Syncthing (to mirror my media files between a Hetzner Storage Box and my NAS at home).
There's a specific setup I tried to build once but didn't manage:

  • Expose only Wireguard port from my VPS
  • make it so that when (and only when) a device is connected to the VPS via Wireguard, then mydomain.xyz will target the VPS' IP (and therefore hit my Nginx proxy which redirects to my various services at myservices.mydomain.xyz.

I tried by having a Adguard Home running on that same VPS, and setting its IP as the DNS in the wg0.conf that goes on the client device but it didn't work.