Is there a way to confirm that my home server’s security is sufficient for most common attacks?
Externally, I only have the ports 80, 443 (Nginx-Proxy-Manager) and 51829 (Wireguard VPN) enabled on the router.
I have a Rpi4 and a mini PC connected to the router via ethernet cable. And I am using NPM for reverse proxy. Also enabled SSL for local DNS so I don’t have to keep typing the IP addresses for each server.
All my apps are docker containers and they all use network_mode: bridge
.
And finally, I have only two services open to internet. The media server and the Wireguard VPN. Got the free DuckDNS domains and configured in the NPM.
I haven’t done any specific firewalls. Just using default Debian 12 settings and default Docker engine settings.
I recommend you dont touch network_mode unless you absolutely need it
Most services shouldnt need the network_mode, just gotta port forward/translate most of the time