I’m still learning a lot about networks and security, so I wanted to ask for recommendations about the best way to configure Nextcloud for external access.
I would like to be able to reach my Nextcloud instance from anywhere (I initially set it up to work under VPN, but found it annoying to have to VPN every time, and I’d also like to use my Nextcloud instance for automatic backups, which I don’t want failing when I’m off VPN).
I have the Turris Omnia with a 2TB hard drive attached. I have installed Nextcloud and can currently access it from LAN. I have also configured my Omnia to utilize dynamic DNS with a hostname provided by No-IP, but I have not yet enabled port forwarding, as this is where I would like some advice.
Is there a way to allow access to the Nextcloud instance from anywhere, but block traffic to any other device, and block access to the Foris/LuCI tools, etc?