by
ewhac » Wed Jan 19, 2022 11:47 pm
dearscott wrote:So, would dynamic dns be something we'd be best off serving from our router?
Or, is an external service needed such as a VPS?
Depends on what you want to do.
If you want to be able to SSH or VPN in to your home network via a convenient DNS name, then DynDNS will work well. You can also stand up an HTTP server.
Getting Let's Encrypt SSL certificates with wildcard SAN entries may prove to be more of a challenge, as you have to prove you control the DNS name by adding TXT records containing a string of random text issued by Let's Encrypt. I'm not aware of any dynamic DNS setups that provide for this.
OTOH, if you want to run an SMTP server, you're probably out of luck. For your messages to not get down-rated by other SMTP servers, your forward and reverse DNS lookups must match. This is impossible for dynamic DNS, so you will look (more) like a spammer. Many "big" SMTP servers also down-rate or outright block known dynamic IP address ranges. (Also: Sonic blocks outgoing connections to port 25 (smtp) but, weirdly, not
incoming connections, and last I checked allows outgoing connections to port 587 (submission).)
ngufra wrote:Some dynamic ip services can be configured in the router. i remember some dd-wrt router that could update dyndns out of the box. I do not know but doubt the routers provided by sonic have the capability.
pfSense is one that can do this. I'm >< this close to turning it on...