Home Hosting - No Ports Open

Comments

2 comments

  • Avatar
    Firewalla

    First, there is no simple way of running home services if you don't want to use VPN or open any ports. To do that, you will have to create a proxy somewhere else and have that traffic tunnel to your home ... but that is just like a VPN.

    DDNS is simply a way to prevent your IP from changing and not able to finding firewalla, such as VPN Server (OpenVPN or WireGuard). So it has nothing to do of how you want to provide the service. Although as you said, it can be used with CNAME to help your own domain finding your service IP.

    0
    Comment actions Permalink
  • Avatar
    James Willhoite

    I currently run a Web Server for multiple domains, I also host a Node for both crypto coins Monero and Ravencoin. As long as you allow the correct ports through to the right machine (IP) you should be fine. The Firewalla does a great job blocking "bad" traffic. If something gets through that I don't like, then I block the IP address through the Alarm (reactive I know, but at least they won't get through again). Just make sure to keep up with your alarms, or import some sort of block list into your Firewalla rules/list.

    As for the DDNS I already had a script that updated my IP address with my domain provider (this was before Firewalla). NameSilo has a great API for doing this. I also added my Firewalla DDNS name as a CNAME with NameSilo so if the script fails to run and update my domain, then hopefully Firewalla caught the change and the CNAME will take over.

    0
    Comment actions Permalink

Please sign in to leave a comment.