ive anabled a port forward on port 80 (TCP/UDP) to my server, but i still cant acess it. i know its unsafe to just open a port like that, this is temporary, just wanna see if it works. ill put a reverse proxt and https on it later

  • Starbuck@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    1
    ·
    11 months ago

    Please set up Tailscale or a Wireguard VPN before you start forwarding ports on your router.

    Your configuration as you have described it so far is setting yourself up for a world of hurt, in that you are going to be a target for hackers from literally the entire world.

    • thecrotch
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      11 months ago

      before you start forwarding ports on your router

      Don’t you mean instead of? If all the OP wants to do is access next cloud, they can do it over the VPN without forwarding ports. What you’re suggesting doesn’t solve the problem of port 80 being an attack vector, and adds yet another attack vector (the VPN itself)

      • Starbuck@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        11 months ago

        Realistically, yes. But it’s a phrase and it’s important that they start doing that first. Maybe it’s their intention to do it publicly.

        Also, sure, but a Wireguard installation is going to be much more secure than a Nextcloud that you aren’t sure if it’s configured correctly. And Tailscale doubly so.

        • thecrotch
          link
          fedilink
          English
          arrow-up
          2
          ·
          11 months ago

          Wireguard installation is going to be much more secure than a Nextcloud

          I understand that, and it’s a good suggestion and a better solution if it fits the OPs use case. I don’t understand suggesting they do both. Either VPN or port forwarding solve the problem, doing both seems unnecessary.