• pandapoo@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    3
    ·
    edit-2
    2 days ago

    Did you mean to send that reply to me?

    I ask because I’m not quite sure what specific suggestions you’re looking for.

    But in general, I would suggest not exposing port forwarding.

    What services are running behind NGINX? What router/firewall are you using?

    • bane_killgrind@slrpnk.net
      link
      fedilink
      English
      arrow-up
      2
      ·
      2 days ago

      Yes, I attribute security significant misconfigurations to a lag between new service deployments and a relevant review by network security (in a business environment. At home it’s just me.)

      So I’m running Milestone VMS, Synology NAS and maybe in a day a minecraft server for the kids, which should all be available outside my home. I’m using the mikrotik HexPOE which is my main router/firewall.