1·
1 day agoDo you have a link to that blog post, by chance? I’d like to learn more!
8j1obzlb
- 0 Posts
- 6 Comments
Joined 8 days ago
Cake day: May 17th, 2026
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
3·2 days agoThat said, VPN would be much more manageable if I was trying to really push performance or scale out the network.
I agree with the folks saying reverse proxy of some kind + WAF. That way end users don’t have to deal with the VPN, but your home system is not directly exposed.
I’ve been doing something similar with SSH local port forwarding and a $5/month VPS. Haven’t come anywhere close to my network quotas, and performance has not been an issue for home use with 2-5 concurrent users most of the time. I forward the local caddy ports to unprivileged ports/user on the VPS, then use the firewall on the VPS to forward that port to 443 and lock down the rest.
Introducing: RHEL but worse!
Hoping Vaultwarden comes out unscathed—at least for a while!
FWIW it seems Jellyfin has some application-specific authentication/security bugs that complicate things a bit. Of course the same concepts should generally apply, but some considerations will be different depending on what application you’re exposing.