How to deal with non-static IP for incoming server on Asus router and a question about EASILY mapping a remote drive
by road hazard from LinuxQuestions.org on (#6MDPH)
I recently moved my backup server to my brother's house. Both are running Debian 12.
Right now, I have a static IP and his router is configured to only allow incoming SSH traffic from my IP address. (I think this is fairly secure?) And when my rsync job runs, it calls out to the Let's Encrypt DDNS name that his router registered with Asus. I have tested this and it's working PERFECTLY.
In the coming months, I'm probably going to be switching ISPs and will no longer have a static IP. If my IP changes, I won't be able to adjust his router to allow only my, unique IP as the source so I'm guessing I'll need to install Zerotier or Tailscale on my main server at my house and the backup server at his house so they can talk to each other for the backup job. I run Plex on my main server... will this cause any problems? Which one of those VPN services is DEAD SIMPLE to setup?
Or is there another way I should go about this if/when I switch ISPs and no longer have a static IP address? I used the ssh-copy-id to copy my keys to his server.... does that mean my unique keys were copied and it's safe to open the inbound ssh port forward to the world as only I would be able to authenticate to my remote server?
Yes, I'm a Linux newbie....especially when it comes to securing ssh. :)
I think I should also start reading up on fail2ban as well as an extra layer of security.
Right now, I have a static IP and his router is configured to only allow incoming SSH traffic from my IP address. (I think this is fairly secure?) And when my rsync job runs, it calls out to the Let's Encrypt DDNS name that his router registered with Asus. I have tested this and it's working PERFECTLY.
In the coming months, I'm probably going to be switching ISPs and will no longer have a static IP. If my IP changes, I won't be able to adjust his router to allow only my, unique IP as the source so I'm guessing I'll need to install Zerotier or Tailscale on my main server at my house and the backup server at his house so they can talk to each other for the backup job. I run Plex on my main server... will this cause any problems? Which one of those VPN services is DEAD SIMPLE to setup?
Or is there another way I should go about this if/when I switch ISPs and no longer have a static IP address? I used the ssh-copy-id to copy my keys to his server.... does that mean my unique keys were copied and it's safe to open the inbound ssh port forward to the world as only I would be able to authenticate to my remote server?
Yes, I'm a Linux newbie....especially when it comes to securing ssh. :)
I think I should also start reading up on fail2ban as well as an extra layer of security.