24
submitted 1 year ago by soullioness@lemmy.ca to c/selfhost@lemmy.ml

For example, I prefer to use a VPN instead of port forwarding. And I use SSH for anything I used to use an FTP for.

you are viewing a single comment's thread
view the rest of the comments
[-] const_void@lemmy.ml 1 points 1 year ago

Blacklist everything then whitelist the IPs you know you'll be connecting from (work, cell phone, etc). I don't connect from random places usually. If I need to then I use cellular. You might be better off with a VPN if you need to connect from random places.

[-] splendoruranium@infosec.pub 1 points 1 year ago

Blacklist everything then whitelist the IPs you know you’ll be connecting from (work, cell phone, etc). I don’t connect from random places usually. If I need to then I use cellular. You might be better off with a VPN if you need to connect from random places.

I see, thanks!
Is there any concern with whitelisting a cellular CGNAT's public IP? Presumably that would potentially whitelist thousands or tens of thousands of other mobile devices at once, wouldn't it?

[-] const_void@lemmy.ml 0 points 1 year ago

Is there any concern with whitelisting a cellular CGNAT’s public IP?

It depends on how much you decide to whitelist. In my case I whitelist my cellular carrier's IP block. Which does expose those services a little more broadly but I'm willing to risk it.

this post was submitted on 26 Aug 2023
24 points (100.0% liked)

Self Hosted - Self-hosting your services.

11419 readers
1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules

Important

Beginning of January 1st 2024 this rule WILL be enforced. Posts that are not tagged will be warned and if not fixed within 24h then removed!

Cross-posting

If you see a rule-breaker please DM the mods!

founded 3 years ago
MODERATORS