@bazcurtis The guide you’ve described here seems to expose your HA to the internet. I’d take additional precautions and use multi factor authentication for accounts on that instance, and clodflared (which can block some unwanted traffic) instead of just SSL port exposed to the internet.
@bazcurtis This guide seems like it does just that. Can you try connecting to your HA address (the one set for Dynamic DNS) using cellular on your phone?
@bazcurtis Man, it’s just an app you can install on your phone that can connect to your server. You can be away from home at some point and may need to look something up. It is a pretty secure way of doing it, so why not use it if you’ve already set it up (and already in use for other stuff)?;)
@spitfire I have never heard of ZeroTier. This was more of a pet project. I don’t really need to do it. I will do some ZeroTier research. Home Assistant gives the add-on 4/8 on their security score.
@bazcurtis Well, you’re already using it anyway - so better check if you’re ok with it :)
Another similar solution which would give you pretty much the same functionality is Tailscale.
@spitfire I did see that. I think I will give #ZeroTier a go. Not sure I will have time today. It will have wait for another week. I appreciate all the feedback and pointers.
@bazcurtis I’m running Tailscale (used OpenVPN, tinc and regular Wireguard- which Tailscale is using for the tunnel) on my routers (old apt., house, mom’s home) so I can access anything from anywhere, between these locations and individual devices connected to the same tailnet (my tailscale network) - like my iPhone or MacBook wherever I am. This does not technically open services inside of these locations to the internet.
Add comment