I opted for dynamic dns and reverse proxy. I configured my reverse proxy to use TLS and also to require client certificates, which I install on my devices. You get so much flexibility and added consistency to your application security that I feel it is a must.
That was uncalled for.
Make that RAID Z2 my friend. One disk of redundancy is simply not enough. If a disk fails while resilvering, which can and does happen, then your entire array is lost.
I guess that puts me in the 1%. I live in Richmond, VA. It’s a great city for scooters and on occasion I will rent one. That said, they really do literally litter the sidewalks. If I go for a run, I will 100% have to avoid scooters that have been improperly parked and are blocking the sidewalk. I feel bad for disabled people because sometimes the sidewalk is completely blocked for somebody in a wheelchair. There are too many of them for the demand. It can be quite annoying.
Correct. Get a 4th drive. You will be thankful one day down the road when you are rebuilding the array and you lose a drive during the rebuild.
Consider moving to RAID-6. Single redundancy is not cool anymore.
I use a reverse proxy and client certificate authentication for anything I expose. That requires me to pre install the client certificate on all of my devices first, but afterwards they can connect freely via a web browser with no further prompting to authenticate. Anybody without the client certificate gets a 403 before they even get past the proxy.
There are limitations to this and overhead of managing a CA and the client certificates for your devices.
I’m using Dynu for DDNS. They support subdomains as part of their DNS. You can configure nginx to service/route requests to each subdomain differently.