Comment on Solutions for remote access?
philpo@feddit.org 2 weeks ago
Just a theory: There is a good chance that your provider does CG-NAT and that was the issue with OpenVPN. These would persist with wireguard,sadly, unless you solve them properly. (Which can be tricky). But just for the book: Running an Wireguard Container behind your router and have a port forwarded to it is an option. (But still needs CG NAT adressed)
Thaft leaves you with a few options:
-
Cloudflare: Imho a bad idea - it’s evil, it’s monopolistic and while it’s “an easy way” it has its technical downsides. As you said a domain is still required.
-
Use a small VPS and run a wireguard tunnel and maybe pangolin as a reverse proxy on it.It has the benefit of being very flexible and once configured is fairly stable and it puts the security part outside your network. But it costs money unless you maybe make it work on oracle’s free tier. I would still recommend using a cheap domain,though)
-
As others have mentioned: Tailscale/Zerotier/Netbird absolutely are an option if it’s just for you. But they get nasty if it’s for more people or larger deployments.
electric_nan@lemmy.ml 2 weeks ago
I do your second suggestion. I have a cheap ($5/mo) vps from digital ocean that proxies all the traffic to/from my home server via wireguard. There’s a few tutorials out there that explain how to configure iptables to forward traffic from one network interface to another on the vps.
philpo@feddit.org 1 week ago
Yeah. And Netbird/Pangolin go a long way these days.
Have a look at Layer7,btw. They are more than decent and you can easily install Proxmox on them as a Hypervisor.