Well, hello there.

I run several services on my NAS at home.

I have a domain which always points at home and redirects port 80 to wikipedia.

Almost all ports are not forwarded, only for those which i want to have access to.

Example:

  • Paperless
  • Syncthing
  • FreshRSS

Now i work on my corporate computer and i cant access my services.

Why?

It blocks connections which go to a specific port.

Now i would love to access freshrss on adress:

Www.domainexample.com:1234

Which gets blocked.

Any ideas?

Messing with the local pc is of course forbidden.

  • Jeena@piefed.jeena.netEnglish
    391·
    3 days ago

    Just use port 443 or 80 and use sub domains and a reverse proxy for each of your services.

    For example:

    https://rss.example.com/ goes to port 443 on your server where you run a nginx with letsencrypt. You set up a vhost for this subdomain which then internally proxies to your IP adress and port for freshrss.

    I have it like that: https://rss.jeena.net/ and https://piefed.jeena.net/ and https://toot.jeena.net/ and so on.

    • k4j8@lemmy.worldEnglish
      1·
      2 days ago

      I do this too plus block all IPs via firewall except my work and home IP addresses.

    • stratself@lemdro.idEnglish
      10·
      3 days ago

      Beat me to it. This is likely the best way as 443 is ubiquitously unblocked on most networks

      • ChapulinColorado@lemmy.worldEnglish
        5·
        2 days ago

        But then you are sending credentials in clear text over the network. That will get logged on the corporate access logs ensuring a quick permanent vacation once they notice how careless the employee is, not to mention the mixing personal and work resources.

        Edit: forgot to mention, most work devices also decrypt SSL traffic by using man-in-the-middle approach (unless they are very incompetent). Even stuff like personal email and shopping should not be accessed on a work device if you don’t want your work to have your passwords.