2·
3 months agoAn Idea I am also using for other things where I do not want to use a VPN:
- Setup a reverse proxy (e.g. traefik)
- Setup an oauth middleware for everything (forward Auth)
- Create rules to exempt very specific request based on IP, headers, etc… from the middleware.
In the casting use case you have to find a request and check if there is any parameter that you can use to safely whitelist the request. Ofcourse someone could get behind this and fake the request to match the whitelist. But without knowing that there is even a whitelist no one will really try
I am currently using Traefik with rathole to expose services which do not have a public available port. It seems netbird has a nice gui, but is not able Todo advanced reverse prox configs based on path, headers, etc…