• 0 Posts
  • 11 Comments
Joined 2 years ago
cake
Cake day: June 13th, 2023

help-circle



  • This would be correct. We have at least 7 amazon alexa/fireTV devices and a bunch of other IoT devices with Alexa capability and each of them get used regularly.

    The IoT devices are on their own subnet which doesn’t have access to the other subnets. I live with my mom and Alexa devices just make her life way easier. I put in the work to make sure the alexa and IoT devices are as restricted as possible without losing functionality so she can live a bit easier.






  • I don’t technically open any ports to the public. I have a site-to-site wireguard tunnel to a hosted server. The hosted server is running a hypervisor with two virtual switches. One switch is my external switch and only my Wireguard server is using it. The other is an internal switch where I place other VMs for separate things. A container host, a terminal server with xrdp, a monitoring server with netdata, stuff like that. All technically, but unnecessarily, accessed through nginx proxy manager.

    Because it’s site2site with my home equipment on the Wireguard server, i can still connect to my home network where i host a number of separate services like HomeAssistant from outside the home network.

    I don’t use tailscale, but Wireguard vanilla is super easy to work with. I also have fail2ban pretty much everywhere I can install it because it takes up practically zero resources.