Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    Port Fwd with DynDNS or VPN for remote access?

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B Offline
      Bigzaj
      last edited by

      I have several services I use at my house that I want remote access too (CouchPotato, Remote controls, IPcameras, etc.) with guides that typically suggest access through port forwarding and using some dns service provider.  Is this truly the best way or would setting up VPN on my router and connecting to it be more secure / safer?  My big issue is the IP cameras, I don't feel comfortable just forwarding a port and getting access to them.

      Any recommendations on a good remote access setup?

      1 Reply Last reply Reply Quote 0
      • W Offline
        Wolf666
        last edited by

        I would setup a VPN server.

        ISP FTTH PPPoE 1000/300 Mbps
        pfSense 25.11.1 CPU i5-11320H @ 3.20GHz - 16GB RAM - NVMe 256GB -
        Switch Zyxel XGS1210-12
        AP Netgear RAX200 (Stock FW)
        NAS Synology DS1621+

        1 Reply Last reply Reply Quote 0
        • B Offline
          Bigzaj
          last edited by

          Will I need to manage any traffic/ports if I use VPN?

          1 Reply Last reply Reply Quote 0
          • DerelictD Offline
            Derelict LAYER 8 Netgate
            last edited by

            If you use OpenVPN, just the inbound port for your server on WAN (UDP/1194 by default).

            Then you must set firewall rules on the OpenVPN tab, which governs what connections from VPN clients the firewall will allow into it, but for a personal remote access firewall it's probably safe to just set it to IPv4 any.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.