I use arch btw

  • 0 Posts
  • 7 Comments
Joined 1 year ago
cake
Cake day: July 6th, 2023

help-circle





  • You need to expose the ports you want to access on an external, publicly accessible server like a cheap vps. Then you can use wireguard to forward the traffic to your Pi.

    I haven't done it in a long while, so I can't explain it well enough, try searching for "vps wireguard gateway". That should bring up some blog posts that will explain the process better. I used a VPS I got on the AWS free tier, you really don't need anything expensive.


  • Gluetun is great, but it does not work with docker swarm. I'm using a container running wireguard and Dante as a SOCKS5 proxy, everything that needs a VPN is on an internal overlay network and routes through the proxy container. Only the proxy container is part of the public network and all external traffic goes through the VPN. I use Traefik as a reverse proxy which is part of both the private and public networks. Meaning I can access the private containers (qbitorrent, prowlarr and sonarr) externally through Traefik but they cannot access anything outside the internal private network unless they route though the proxy container.

    It's not perfect but it works xD