"
Hello folks!
I'm new to OPNs and recently I finish install the OS.
Everything works lovely and I'm really satisfied.
My main goal to move to Opnsense was to protect my TrueNas server with revers proxy for Emby outside the network without opening ports while the traffic go through Mullved VPN AND make sure I can still access it from LAN/WG_VPN home.
I think of two options, and I really need help to decide which one is better or maybe hear another one better.
1.Manage everything from Opnsense - My OPNs using Bridge on all the LAN ports, So I thought to setup Mullved VPN only for the TrueNas port (port 3), then Install the HA proxy and configure it to work with the Emby port. But I'm not sure if it will impact the app connectivity for other apps like qbittorent with ports open.
2.Split the work - TrueNas allows to use wiregard and theoretically connect to Mullved and install the HA proxy on the OPS. Or maybe otherwise, Install the VPN from the OPS side and then configure with one of the apps from Truenas docker the revers proxy.
The things that is really important to achieve:
- Best secure way to get it done!
- Still able to access the NAS and his apps locally.
- To choose the best way to implement this in terms of troubleshooting in case I needed.
- To get the best performers. I personally think that running this OPNs will reduce no need stress from the TrueNAS.
What do you think?
I really like to hear your opinion.
Thank in advance!
I'm new to OPNs and recently I finish install the OS.
Everything works lovely and I'm really satisfied.
My main goal to move to Opnsense was to protect my TrueNas server with revers proxy for Emby outside the network without opening ports while the traffic go through Mullved VPN AND make sure I can still access it from LAN/WG_VPN home.
I think of two options, and I really need help to decide which one is better or maybe hear another one better.
1.Manage everything from Opnsense - My OPNs using Bridge on all the LAN ports, So I thought to setup Mullved VPN only for the TrueNas port (port 3), then Install the HA proxy and configure it to work with the Emby port. But I'm not sure if it will impact the app connectivity for other apps like qbittorent with ports open.
2.Split the work - TrueNas allows to use wiregard and theoretically connect to Mullved and install the HA proxy on the OPS. Or maybe otherwise, Install the VPN from the OPS side and then configure with one of the apps from Truenas docker the revers proxy.
The things that is really important to achieve:
- Best secure way to get it done!
- Still able to access the NAS and his apps locally.
- To choose the best way to implement this in terms of troubleshooting in case I needed.
- To get the best performers. I personally think that running this OPNs will reduce no need stress from the TrueNAS.
What do you think?
I really like to hear your opinion.
Thank in advance!
