Thanks for the replies, I finally had some time to spend on this.
It has a static IP and I could connect to it without a problem before.
Do you mean to use OpenVPN in combination with SSH or to replace SSH with OpenVPN? If the former, then I’m not too eager about adding more complexity (and thus failure points) to my setup, but I’ll consider it since it adds more security as you described.
If the latter, I’m not really sure that’s wise since OpenVPN’s codebase is much larger and (according to reputable sources) built with lower quality standards than
WireGuard is something I’m also considering (especially for the first scenario), but I’ll have to figure out how I’d use WireGuard while I’m also using WireGuard as my “normal browsing” VPN. Is it even possible to do such a thing?
sshd setup previously worked without any problems, but then I had a crappy ISP router on which I did the port forwarding.
iptables -L and although I have a basic understanding of it, the firewall table generated by the Omnia is a bit much. However, I couldn’t find the relevant port numbers anywhere in that table. It’s as if the firewall is completely oblivious to my port forwarding rules.
In various chains (called zones?) I have either:
ACCEPT all -- anywhere anywhere ctstate DNAT /* !fw3: Accept port forwards */
ACCEPT all -- anywhere anywhere ctstate DNAT /* !fw3: Accept port redirections */
But again, no mention of the ports I specified which are accessible from the WAN side or on my LAN side.