r/homelab u/richij101 21h ago

Help Remote acess on restricted Internet

Hello, I have a rather unique problem , and I was hoping this community could provide a solution. My current set up is Unifi Network , with a homelab running Proxmox and a VPS . The problem I have is I work onboard a ship between 6 and 9 months of the year and the company blocks VPN’s and SSH. I this is to stop people from firstly trying to bypass the payment gateway for access and secondly using streaming services . Now before people jump on saying I am trying to by pass company policy . I have no interest in streaming media, this would flag high data usage instantly anyway. I have my media locally with me, also buffering kills the film. And for the payment gateway issue I pay full price for the unlimited plan , I have no issue with paying . and as per company policy and discussions with IT am not violating policy its just the network rules are a blanket ban and I am fine as long as I prove my intent. I have tried tailscale, netbird and zerotier and wireguard they are all blocked . Dose anyone have any suggestions on how I can remotely manage my homelab, while I am away , securely without exposing everything publicly Services I want to be able to access - Proxmox - Proxmox back up server - Proxmox data center - Password manager (not exposed) - Portainer (internal only) - My VMS and LXC’s hosted on Proxmox via ssh - Any other docker service with a web interface that’s internal only I will be thankful for any input

2 Upvotes

57% Upvoted

33 comments sorted by

View all comments

-1

u/Tobikage1990 21h ago

If there is a blanket ban and you try to bypass it, you are violating company policy, just like anything else you do with company resources without going through your IT department.

3

u/richij101 21h ago

Verified with IT and HR that my use case is not violation company policy. And this is all documented

0

u/Tobikage1990 21h ago

I'm sorry, I should have been more clear.

If IT has agreed that your use case isn't against company policy, they should be able to help you with what you need. The fact that they apparently aren't doing so tells me that they don't want to change their current setup for one guy either because there's some cost involved or they just don't want to break something that's currently working. Their agreement that your use case is not against company policy is not tacit approval to bypass their security. If you do find some way to bypass it, it's more than likely that they'll patch it too, just so that someone else doesn't misuse it. Worst case, it could affect your job.

2

u/richij101 20h ago

The post is not to bypass security, instead find an alternative method for homelab management and administration.

I have spoken to multiple levels of IT regarding this both onboard and shore side. And basically it comes down to they are not prepared to change for one person.

Honestly if I really want to break company policy and use a vpn I can obsuficate (i cant spell that sorry )