I have a domain which I use for mails. I was thinking of adding a subdomain network.mydomain.com and have a docker ddns-update container connected to my registrar’s api since my IP isn’t static.
The purpose of that would be to provide myself VPN access through my OpenVPN and to have a static address for friends to connect to my game servers that I usually host.
My home network’s UPNP is disabled and I have no exposed ports other than the VPN port and 25565 which I use for all game servers and disable when it isn’t in use.
All services my home server provides are LAN only which is why I need VPN access.
With that said, are there any security risks?
As already said, it doesn’t really add any vulnerabilities. However, it does add some level of visibility. Your ip in the great ocean of ips on the internet is essentially anonymous until you point something at it that can be used to identify you. Some people might not care, but it’s something to take into consideration. Another option is to use a reverse proxy like nginx. Set up a super cheap or free vps on Google Cloud or something and have that point to your home ip and the dns record points to the vps. This will do a couple of things. First, it allows your home ip to keep its anonymity, and if someone out there is a hater and tries to dos your hosted service, the vps will take the traffic and not your home internet. Also, just learning about all these cool tools and services you can build and deploy is lots of fun.