I've come to a crossroads recently in my home network setup and looking for some input.
In the past, I ran pfSense and all IPv6 was disabled. Traffic was forced through a VPN service, such as NordVPN, with a few exception that restricted the VPN service.
At present, my network is fully open traffic IPv4+IPv6 with only very specific traffic (by host IP) forced through VPN and IPv6 disabled on that host.
I'm considering going back to a more secure network setup with IPv6 disabled and all traffic forced through a VPN.
With regards to VPN performance, it's negligible in my case. 100/10Mbps is easily achieved with an acceptable increase in latency.
What do you lovely geniuses do?
FWIW, I'm considering this because I recently had a few displaced friends start living at my place and I prefer what they may do (torrents? misgender someone?) not come back on me and to generally harden my network.
In the past, I ran pfSense and all IPv6 was disabled. Traffic was forced through a VPN service, such as NordVPN, with a few exception that restricted the VPN service.
At present, my network is fully open traffic IPv4+IPv6 with only very specific traffic (by host IP) forced through VPN and IPv6 disabled on that host.
I'm considering going back to a more secure network setup with IPv6 disabled and all traffic forced through a VPN.
With regards to VPN performance, it's negligible in my case. 100/10Mbps is easily achieved with an acceptable increase in latency.
What do you lovely geniuses do?
FWIW, I'm considering this because I recently had a few displaced friends start living at my place and I prefer what they may do (torrents? misgender someone?) not come back on me and to generally harden my network.