Hello I am wondering if there is increased network/packet security by connecting to a server over ssh through a VPN hosted by that same server as opposed to without first tunneling by VPN. I imagine with or without tunneling through a VPN there would be latency/speed differences too?
Whenever we have a discussion about security, it’s generally useful for us to talk about the types of attacks that we are trying to mitigate. What are some examples that you would be concerned about?
If your VPN is reasonably responsive, you probably won’t notice a change in the latency. VPNs tend to have maximum top speeds, and if you were doing SFTP, there’s a reasonable chance you would find that limit very quickly.
I am aware that opening / forwarding ports are attack vectors and they become unavoidable though if i need the vpn and ssh capability, however, in theory the ssh port could be closed/not forwarded if traffic/connection was tunneled through the VPN. Those are my thoughts