I currently have my reverse proxy on my NAS. That means I forward all of my 443 HTTPS traffic to my NAS. I am using OpnSense for my router, and there are several options for reverse proxies on that. Everything works the way it is now, but I do wonder if it would be “better” if I moved all of the reverse proxy stuff to my router. I don’t know that anything would be simpler to manage one way or the other, so I think it comes down to best practices and security. If I move the reverse proxy to my router, I would be able to remove that forwarded port, but is that really any more or less secure?

  • RedFox@infosec.pub
    link
    fedilink
    arrow-up
    2
    ·
    9 months ago

    Is this for internal clients?

    If no, do you need unauthenticated public access to that?

    Would you consider VPN instead?