Hacker News new | ask | show | jobs
by abujazar 238 days ago
Nowadays public facing client IPs are often shared by thousands of users behind CGNAT. IP based firewall rules are useful when the peers have their own static IP address, but provide no real security when the IP address is shared.

This is vibe coded security through obscurity, i. e. quite useless. Use Tailscale or a self hosted VPN.
1 comments
nextlevelwizard 237 days ago
It could be fun extra layer. Like of course you should always use VPN, but maybe a magic packet so your VPN server even opens a port could be fun.
link