Michael Jack
@mjack@hachyderm.io  ·  activity timestamp last week

I've got a OpenBSD VPS with a WireGuard connection to a server on my home network. I can ssh and ping both ways through the WireGuard tunnel.

Would it be possible to use relayd on the VPS to direct traffic to different services running on the server at home?

service1.example.com -> server:8443
service2.example.com -> server:8090

It kind of looks that way from:

https://mutualaid.info/posts/using-relayd-as-a-reverse-proxy-on-openbsd/

I can add DNS records to the domain in question.

(I'm new to OpenBSD, but not Linux)

#OpenBSD#WireGuard #selfhosted
Martin Pugh
@pugmiester@bsd.network  ·  activity timestamp last month

I just stopped myself from legacy IP thinking.

I'm planning a new Wireguard link between a pair of servers and was about to use a small IPv6 subnet when I caught myself.

Thanks to our amazing home ISP, not only do we have fixed IPv6 and legacy IP addresses, but we have a massive /48 of IPv6 space available so for a home network, plus guest and iot WiFi, and a few lab vlans, we really do have a practically unlimited amount of address space available (65535 /64's, each with 18 quintillion addresses).

So, even though it's a point to point link, I can just allocate a /64 and pick a pair of addresses from that range. This isn't legacy IP anymore, stop thinking that way.

I could of course just use a pair of link local addresses and the traffic would (should...) still flow but if I use GUA's from my allocation instead, I'll get proper responses in traceroute if I need to troubleshoot.

#ipv6 #wireguard
gyptazy
@gyptazy@mastodon.gyptazy.com  ·  activity timestamp 4 months ago

From an idea to a working beta version in just a few hours. #IPv6 tunnel service with #Wireguard and #OpenVPN support. GRE & SIT follows, OpenVPN PKI backend will be switched to Hashicorp Vault.

Still several things to do… #network#IPv4#GRE#SIT#Tunnel #homelab #net #services @BoxyBSD