What type of hardware are you using: Old laptop or computer What YunoHost version are you running: 12.0.14 (stable) How are you able to access your server: SSH, Admin panel, Physical access to the local server Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: No
Describe your issue
I think I successfully installed and configured a WireGuard VPN. I tried following rungeard’s “Homemade WireGuard VPN on a VPS server” Homemade WireGuard VPN on a VPS server but ended up using pivpn. I installed wireguard on both machines and configured them. When I connect to the vpn trough my phone I have access to the internet and the vps IP is shown, same thing with my local yunohost server located at my home.
Am I doing things right? I don’t think there is a step by step guide on how to bypass your ISP. I’d be open to recommendations, but it’d be cool if this worked.
What should be the next steps?
I have errors on all ports except 22. The ports are open in the dashboard of the vps, but they still show up as closed when I check them with Open Port Check Tool - Test Port Forwarding on Your Router. I didn’t install a firewall on any of the two servers, and there isn’t one running as far as I know.
After I sort the ports thing out (hopefully one day) will I have to set up a reverse proxy or something like that? I hope not, I’m not sure what it is.
If I want to connect to my app trough my phone or other device, do I have to connect first to the VPN? I understood that the point of the VPN was to connect the local server to the VPS only.
I would be extremely grateful for some help pals. If I sort it out by my own I’ll also post an update.
Thank you!
But it needs a lot of networking knowledge to run. So you’ll need to learn these things to be able to maintain such a setup.
At the moment the problem might seem to setup your VPN, but once it’ll work you can count the days until you’ll run into some problems. You’ll need to be able to debug and solve theses problems.
My advice: step back, start over. Do not follow how-to documents, but read manuals and explanations about the software you use.
You’ll need to learn about routing. You didn’t mention that you already setup some solution to send the ip packets arriving at your vps over the wireguard vpn to your yunohost (network address translation / socat / reverse proxy).
To keep maintenance work low I solved the problem by firewall rules (network address translation) and routing: no additional software on the vps that needs to be updated.
If you are able to switch from Wireguard to OpenVPN, there’s an existing app that (mostly) takes care of the setup for you: YunoHost app store | VPN Client .
I use it to connect my in-house Yunohost server to an OpnSense VM hosted at Hetzner, serving everything as if it was there. The only problem I’ve had is some DNS hairpinning issues, but other than that it’s working great.
What I wanted to ask was if after everything was set up on the server side, Would I have to configure a connection to the VPN on each client device that wanted to access my server?
Because for example: I wouldn’t want to configure and explain to my grandma (or to any user) what a VPN is, how to disable it when she’s not accessing the server, etc.
As far as I understand, this is not the case, the only mandatory VPN connection is between the local server and the VPS