Opening port 80 & 443 safe?

Hey, after some tinkering with nextcloud I realised my port 80 and 443 were close.

when checking with my internet provider I was told they block it for security reason cause I would get hack pretty quickly!

I was wondering if it’s worth opening for nextcloud I should just use openvpn ?

You can open 443 for our letsencrypt image, which is a fairly secure nginx web server / reverse proxy. It also has fail2ban built in that can block ddos attempts.

You can then reverse proxy nextcloud through that:

Letsencrypt require port 80 for cert no ?

only for http validation, but not for dns or duckdns

ok thanks I will try to set it up!