BluePhoenix01

joined 1 year ago
[–] BluePhoenix01@sh.itjust.works 2 points 10 months ago

Thank you for the info and the links. That seems like a more sensible approach. Hope to try it out after the work week is done.

[–] BluePhoenix01@sh.itjust.works 3 points 10 months ago (2 children)

Very good points all around.

So far, I have WireGuard set up, and activate it when I need access.

This year I have considered Cloudflare tunnels to enable them only to issue SSL certificates (instead of signing my own like I did last year). But not sure if it is worth it or if I should just keep signing myself.

(Cert is mainly to avoid SSL warnings on iOS and browsers, so far I am the only one using what I host)

Might also be nice to not have to configure each device to use a different dns server (my own), but not sure the benefit is worth having that dns record “out there” and Cloudflare “in here”.