top | item 46306012

(no title)

miramba | 2 months ago

Is there a way to do that and still be able to access the server?

discuss

j45|2 months ago

Yes, of course.

Free way - sign up for a cloudflare account. Use the DNS on cloudflare, they wil put their public ip in front of your www.

Level 2 is install the cloudflare tunnel software on your server and you never need to use the public IP.

Backend access securely? Install Tailscale or headscale.

This should cover most web hosting scenarios. If there's additional ports or services, tools like nginx proxy manager (web based) or others can help. Some people put them on a dedicated VPS as a jump machine.

This way using the Public IP can almost be optional and locked down if needed. This is all before running a firewall on it.

m00x|2 months ago

Yes, cloudflare tunnels do this, but I don't think it's really necessary for this.

I use them for self-hosting.

doublerabbit|2 months ago

That server is still exposed to the internet on a public IP. Just only known and courted through a 3rd party's castle.

Carrok|2 months ago

Many ways. Using a "bastion host" is one option, with something like wireguard or tinc. Tailscale and similar services are another option. Tor is yet another option.

cortesoft|2 months ago

The bastion host is a server, though, and would be exposed to the internet.

venturecruelty|2 months ago

>Never expose your server IP directly to the internet, vps or baremetal.

iLoveOncall|2 months ago

Yes, CloudFlare ZeroTrust. It's entirely free, I use it for loads of containers on multiple hosts and it works perfectly.

j45|2 months ago

It's really convenient. I don't love that its a one of one service, but it's a decent enough placeholder.

unknown|2 months ago

[deleted]

sh3rl0ck|2 months ago

Either via a VPN or a tunnel.