Defakto Kinetic Duro
- 0 Followers
- 0 Following
- 1 Posts
Issues forwarding traffic through a wireguard connection
Issues forwarding traffic through a wireguard connection - Lemmy.World
I am attempting to follow this https://www.procustodibus.com/blog/2022/09/wireguard-port-forward-from-internet [https://www.procustodibus.com/blog/2022/09/wireguard-port-forward-from-internet] to forward traffic from a few ports on a public oracle vps to other ports on my local server through a wireguard connection. Currently I am doing this using rinetd, but I was looking for a more normal way of forwarding traffic. (Also looking to forward UDP traffic at some point.) After stopping rinetd, adding these rules to the public server’s wg config # packet forwarding PreUp = sysctl -w net.ipv4.ip_forward=1 # port forwarding PreUp = iptables -t nat -A PREROUTING -i ens3 -p tcp --dport 443 -j DNAT --to-destination 10.144.65.2:8443 PostDown = iptables -t nat -D PREROUTING -i ens3 -p tcp --dport 443 -j DNAT --to-destination 10.144.65.2:8443 # packet masquerading PreUp = iptables -t nat -A POSTROUTING -o wg0 -j MASQUERADE PostDown = iptables -t nat -D POSTROUTING -o wg0 -j MASQUERADE and restarting the wg connection, I’m seeing traffic on the ens3 port but none entering wg0 via tcpdump. I feel like I probably have conflicting iptables rules saved https://pastebin.com/0eNwhNKM [https://pastebin.com/0eNwhNKM] but I don’t really know enough about whats going on there to fix it. I feel like its probably the wireguard-*-rule ones (created by pivpn possibly?) but I’m not sure.
nevermind, im a dingus.
VPS shenanigans, forwarding traffic to game server
VPS shenanigans, forwarding traffic to game server - Lemmy.World
Hey! I built an unraid server a bit ago so I’ve been having fun getting that all set up, then bashing my head into a wall for a week trying to expose stuff since my apartment doesn’t let us pick an ISP or configure the access points they have installed. (I have to be behind like 3 layers of NAT.) I’ve gotten things working by using an oracle VPS with rinetd and a wireguard tunnel to forward traffic on a couple ports to traefik/infrared [https://github.com/haveachin/infrared] on my server. This works great for the HTTP stuff and even the minecraft servers seem to be working alright so far! My current issue is that for some reason the domain I set up for the minecraft server doesn’t seem to be working. My DNS records currently look like: [https://lemmy.world/pictrs/image/28514879-9aee-481d-8590-f025c42f8c30.png] Even when I lose the SRV record and specify the port manually it doesn’t seem to work (tcpdump shows nothing on that port unless i use the VPS ip directly). The other ones all work fine so I feel like I’m just misinterpreting how it should work for a non HTTP endpoint. Any advice would be appreciated :) Also, if there is a better way to forward traffic that would preserve the original IP that would be cool. Infrared just shows the wireguard IP when someone connects. (Haven’t checked but traefik probably does as well for that stuff.)