Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Port Fwd with DynDNS or VPN for remote access?

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 973 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      Bigzaj
      last edited by

      I have several services I use at my house that I want remote access too (CouchPotato, Remote controls, IPcameras, etc.) with guides that typically suggest access through port forwarding and using some dns service provider.  Is this truly the best way or would setting up VPN on my router and connecting to it be more secure / safer?  My big issue is the IP cameras, I don't feel comfortable just forwarding a port and getting access to them.

      Any recommendations on a good remote access setup?

      1 Reply Last reply Reply Quote 0
      • W
        Wolf666
        last edited by

        I would setup a VPN server.

        Modem Draytek Vigor 130
        pfSense 2.4 Supermicro A1SRi-2558 - 8GB ECC RAM - Intel S3500 SSD 80GB - M350 Case
        Switch Cisco SG350-10
        AP Netgear R7000 (Stock FW)
        HTPC Intel NUC5i3RYH
        NAS Synology DS1515+
        NAS Synology DS213+

        1 Reply Last reply Reply Quote 0
        • B
          Bigzaj
          last edited by

          Will I need to manage any traffic/ports if I use VPN?

          1 Reply Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate
            last edited by

            If you use OpenVPN, just the inbound port for your server on WAN (UDP/1194 by default).

            Then you must set firewall rules on the OpenVPN tab, which governs what connections from VPN clients the firewall will allow into it, but for a personal remote access firewall it's probably safe to just set it to IPv4 any.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.