While your own VPN can be used for a pretty wide level of access, maybe think of it like this:ġ) Running a VPN server on your WAN allows you to be remote, but when connected, you can act like you are on your own network in your house. Is there any way I can restrict a user connected via VPN? To only be able to access a list of given addresses perhaps? A
If I were to use VPN, I will have to give other clubmates a VPN account, right? In doing so, won't they be able to access my home's security cameras and other stuff locally? I can trust my clubmates to have a restricted account on my NAS, but giving them that access will be a whole new level of concern. If you have to expose your NAS to the internet, the next best practice will be a) changing the default ports, b) using a VPN service, and c) backing up your files regularly. It's most favorable to isolate your NAS from the internet, security-wise.ģ. Data encrypted by ransomware most likely won't be recoverable without a backup or paying the ransom, at least for DeadBolt.Ģ. I believe the followings are universally agreed:ġ. Either you route through the default gateway (unencrypted), or you route through the VPN (encrypted).Īlthough these original statements are more about OUTBOUND VPN services, which have no bearing on deadbolt, the same applies to INBOUND VPN services should you configure it that way although typically the VPN client app for remote access is either "on" or "off", but it is technically possible to route based on IP and port (service). My router, as an example, can route specific port traffic and / or specific IP traffic, or all traffic, or all traffic on a specific port, or any combination thereof either through the normal default gateway or as encrypted data through the VPN gateway.Īs far as I am aware, there is no way to route non-encrypted traffic through your VPN provider as stated in "VPN tend to encrypt and tunnel all the traffics.". It depends on how you have it configured. VPN tend to encrypt and tunnel all the traffics from one computer, while ordinary proxies usually allow users to fine-tune which sites are getting tunneled.Ī VPN can be used to selectively route *ANY* traffic either through the VPN, or not.