Hello guys, I’m have little to no experience when i have to deal with networking or cybersecurity.
I recently created a backend RESTful API on my Ubuntu VM on my personal desktop and dockerized the app, connecting it to a bridge network named ‘tunnel.’ I also have the Cloudflare Docker hosted in the same ‘tunnel’ network, which allows my local RESTful API Docker to be accessible via my domain and exposed to the internet.
Can anyone help me understand if this setup poses any security risks to my home network?
If so, what should I do to help reduce the risk? I have read that firewall helps, but does a restful api container developed with golang requires it?
As always, it depends. If you don’t require public access, just remote access, I typically recommend VPN like tailscale. If you expose it publicly, you might want to authenticate users somehow and might enforce TLS. If you feel not confident about exposing out from your network, you could consider running it on a VPS or even a PaaS like fly.io, which help a lot with security concerns, they expose tls via their load balancers, you just own the HTTP server which you package into docker.