I am currently self hosting multiple services with Docker containers. A file server, Kiwix with Wikipedia and a PieFed instance sitting behind a Caddy reverse proxy. The PieFed instance is not federated and is more acting like a forum which is meant for a local community within a city. If I do federate in the future, it would be to whitelisted instances from within my physical local community. I am also hosting from behind a Cloudflare Tunnel since my ISP blocks incoming data on lower ports.
I was hesitant to use Cloudflare originally but decided to use it since it was the most suggested recommendation. Now that America and American companies are losing trust world wide, I’d like to explore some other options for tunneling.
Since what I am hosting isn’t really meant for a large user base, I am okay with losing some of the security offered by Cloudflare’s free tier services. I’ll probably look into setting up Fail2Ban and rate limiting to stop a single petty person but that would be something I can do at a later time.
What would be some options to look into when it comes to tunneling behind an ISP with blocked lower ports?
My ASUS WRT router running Merlin firmware offers to host a WireGuard server, I simply use the WireGuard app, dump the config file in and hit connect.
Took a little configuration but eventually got it working how I want it.
Edit: Reason for the Merlin Firmware is because I can route my VPN server through my VPN provider, goes a little like this;
5G/LTE > WireGuard to my router > Router routes that connection to ProtonVPN
This gives me access to the resources in my home while also reaping the benefits of my VPN provider.