Is keeping everything inside of a local “walled garden”, then exposing the minimum amount of services needed to a WireGuard VPN not sufficient?
There would be be no attack surface from WAN other than the port opened to WireGuard
=> More informations about this toot | View the thread | More toots from root@lemmy.world
=> View miau@lemmy.sdf.org profile
text/geminiThis content has been proxied by September (3851b).