I am able to access my DEVONthink database that sits at home from work securely which is amazing. My current setup serves as an amazing personal wiki with wicked powerful search capabilities.
I used ZeroTier One VPN for secure transport between the server (VPS) and my home computer. ZeroTier One requires no configuration of my router firewall. It just works
I used a reverse Nginx proxy server on my web server
Installed Certbot on the server for free ssl certs. for secure transport between anywhere to the VPS via SSL
My server config looks something like this.
sudo nano /etc/nginx/sites-available/devon.yourhost.com.conf
server {
listen 443 ssl http2;
# SSL config
ssl on;
ssl_certificate /etc/letsencrypt/live/devon.yourhost.com/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/devon.yourhost.com/privkey.pem; # managed by Certbot
# Make site accessible from http://localhost/
server_name devon.yourhost.com;
set $upstream 10.0.1.9:8080; #this is the static zerotier ipv4 address of my computer at home with the port I have DEVONthink pro office web listening on.
location / {
proxy_pass_header Authorization;
proxy_pass http://$upstream;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_http_version 1.1;
proxy_set_header Connection "";
proxy_buffering off;
client_max_body_size 0;
proxy_read_timeout 36000s;
proxy_redirect off;
proxy_ssl_session_reuse off;
}
}