76
General Discussion / Re: How to see what static IPs are active
« on: February 22, 2020, 03:11:49 am »
Thanks
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
I tried setting up my dvr following this method and still cannot access it. Any ideas what I may be doing wrong?
Why you invert the address?
DHCP -> DNS -> IP Pihole
LAN Rule:
Pihole Ip -> any tcp/udp:53
thats all.
The VPN brings you in your network securely to access your private cloud, port forwarding makes it a public cloud for everyone to hack into, probably easily even.
The PiVPN solution authenticates you with pass and digital certificates.
Look for PI hardening tutorials as well while at it, since the VPN running on the Pi will have port forwarding.
The rules are a different matter which can be discussed in context.
Few thoughts:
Don't port forward anything from the Internet to a potentially improperly secured owncloud (nextcloud is the better alternative here anyway)
Use pivpn.dev as a straightforward/easy to set up solution to vpn in from anywhere - then access the owncloud server from the inside. Using this approach you only punch the vpn hole in the wan rules. The VPN solutions in OPNsense are just as good, the pivpn.dev one on the Pi might be just a bit simpler to follow (Lon.TV has a decent video on Youtube)
As for DNS, add it in System-Setings-General for the firewall and Services-DHCPv4-LAN (and other interfaces) - DNS Servers --- for automatic provisioning.