Is your home server LAN only or have you configured it in some way to be accessible and secure on the internet? I'm interested in setting up a fileserver myself but I'm not sure what the latest is on security.
I definitely don't open a bunch of ports to the internet! I use Wireguard to VPN back into my home network from my mobile devices. Wireguard only responds to packets that contain a valid preconfigured crypto key, so while the WG port is technically "open" it doesn't respond to a port scanner.
Tailscale is a great place to start. It uses a VPN to access your servers while outside of your LAN while avoiding the security risk of them being wide open to the internet.
So the way I understand Tailscale is that it's built on top of Wireguard; Tailscale claims it's "easier to use" but I haven't found Wireguard to be difficult to configure at all. Are there any extra benefits to using Tailscale that I'm overlooking?
Yes, Tailscale uses Wireguard. If you can use Wireguard, that is great. That is not an option for many people who are behind a CGNAT and/or do not have the ability to setup port forwarding. Tailscale also makes it easier for sharing access with other users.
