I'm trying to improve my home Firewall set up and I'm trying to figure out the best VPN configuration.
GOAL: In order to reduce the open ports of my home webserver I thought to use SSH and webmin service only over a VPN connection and keep these ports closed to the DMZ network
First of all, if my GOAL doesn't make much sense for some reason please advice :)
My actual configuration is: Zeroshell(ZS now on) with VPN with TAP device and the webserver connected as client to the FW. When I remotely connect to the VPNServer (ZS) I can see the webserver in the VPN network.
Question: considering I don't have to bridge the VPN with the DMZ what is the best VPN configuration to use TUN or TAP?
My intention is to move from ZS to opnsense because unfortunately ZS is not updated anymore
cheers
