On my primary NAS, I have a Nextcloud jail I´ve had running for years. Yesterday, I finally got OnlyOffice up and running, with a Document Server set up on my Backup NAS, with its own dns, certificates and all. Works great, and I´m happy..
One question: The document server is on a public DNS, so I guess anyone can browse to it. Which means, I guess, that anyone could use it without my knowledge?
How can I protect it? Do I need to? Can I set it to only accept traffic from my Nextcloud instance somehow? Or should I just leave it open? Don´t feel too good about that...
It´s running on an Ubuntu VM, in a docker container. The web server is nginx.
Excuse the rookie level of this question, I just don´t know how else to put it....
One question: The document server is on a public DNS, so I guess anyone can browse to it. Which means, I guess, that anyone could use it without my knowledge?
How can I protect it? Do I need to? Can I set it to only accept traffic from my Nextcloud instance somehow? Or should I just leave it open? Don´t feel too good about that...
It´s running on an Ubuntu VM, in a docker container. The web server is nginx.
Excuse the rookie level of this question, I just don´t know how else to put it....