Hi All, I know it was asked multiple times but I’m a noob.
What is the best way to access my server from external network? I know I can open a port on router (not recommended), Tailscales, Wireguard or Direct VPN. I will access from android phone and maybe from other devices.
What I want to try to access (mainly docker on NAS)
- bitwarden
- calibre
- setup home assistant
- possibly RSS server
- nextcloud
- plex server (already remote access)
- maybe docker apps too
Thanks
I use tailscale for this with no issues. It traverses my CGnat without significant speed reduction. Just install tailscale on the hosts with the services on them and use magic dns or install tailscale on a vm/container and have it advertise your home subnet as a subnet router.
An option is to set up WireGuard vpn as well couple it with your internal DNS for all those services, and nginx proxy manager to grab certs which you’ll need for hosting Bitwarden/vaultwarden.
443/80 get opened and pointed to nginx which has acl only allowing internal access, then whatever port you choose for WireGuard. On your phone setup the WireGuard app for on demand access once you’re not on your home wifi and job done.
I’m fairly noob-ish but have run Tailscale like this for about a year:
Tailscale on your NAS runs as the host and when you open the Tailscale app on your phone you copy the IP it gives you and use that (plus the port that your services like Bitwarden, Calibre etc each use). Eg.
100.121.9.23:8081
THAT’s the sort of IP you the add to the Bitwarden app or type into your web browser.
I’m pretty amateur with tech but found Tailscale pretty easy to set up and run.