This is an automated archive made by the Lemmit Bot.
The original was posted on /r/selfhosted by /u/wdmesa on 2025-06-18 05:54:43+00:00.
Hey everyone 👋
I’ve been working on a self-hosted project called Wiredoor. An open-source, privacy-first alternative to things like Cloudflare Tunnel, Ngrok, FRP, or Tailscale for exposing private services.
Wiredoor lets you expose internal HTTP/TCP services (like Grafana, Home Assistant, etc.) without opening any ports. It runs a secure WireGuard tunnel between your node and a public gateway you control (e.g., a VPS), and handles HTTPS automatically via Certbot and OAuth2 powered by oauth2-proxy. Think “Ingress as a Service,” but self-hosted.
What's new?
I just published a full guide on how to add CrowdSec + Firewall Bouncer to your Wiredoor setup.
With this, you can:
- Detect brute-force attempts or suspicious activity
- Block malicious IPs automatically at the host firewall level
- Visualize attacks using Grafana + Prometheus (included in the setup)
Here's the full guide:
How to Block Malicious IPs in Wiredoor Using CrowdSec Firewall Bouncer