Doesn't the VPN itself need an open port, though? Is that safer than SSH?
I was thinking of using Tailscale because (to my understanding) it doesn't need an open port.
Man, I'm really wished I had switched to NetSec in 2003. My networking knowledge is really rough. 😅
@RL_Dane @jsbilsbrough "safer" is relative to the threat, of course.
In my typical case, OpenVPN is handled itself by my firewall appliance. While it opens a port it also knows what bad traffic to scan for, without me telling it what to do. Again, I'm not a security researcher, but I tend to trust pfSense/OPNsense/etc more than myself when it comes to opening a port and watching for baddies.
And nowadays I don't even do that, because I just don't need it badly enough anymore.