I configured wg-easy on my home-server (docker installation) and want to check if I missed something security-wise:
- I port-forwarded UDP 51820 on my router
- I have a domain which I purchsed, it’s managed in Cloudflare and I created an A record pointing to my WAN IP.
- Not sure if it matters, but all I have for my
wg.domain.comis a username/password authentication and it’s secured with an SSL certificate, which is obviously only valid inside of my LAN.
I currently assume that since I port-forwarded a UDP port, people can’t try and access MY_WAN:51820. Is it somewhat correct?
Any tips on this would be great. I’m not interested in exposing my setup to the internet, all I want is a secure VPN to sometimes access my network from my phone.
By the way, huge props to wg-easy, very quick and simple setup.
agreed on all of this however updating the docker container feels a little pointless with this one… it’s not been updated in over a year…
Unless, by updating it is actually pulling an updated wireguard… do you know if thats the case?