ngoduykhanh
commented
2 years ago Not sure if I get your idea. Which port are you referring to?
Open MANKUD opened 2 years ago
ngoduykhanh
commented
2 years ago Not sure if I get your idea. Which port are you referring to?
MANKUD
commented
2 years ago Hello,
What I mean is imagine for instance we have a machine behind NAT which we want to access from a different network (WAN) but we cannot open any ports as ISP does not allow. So if we could use the ports on the wireguard-ui server and connect to this machine behind NAT through the wire guard-ui server using wireguard. This would make the machine behind NAT accessible over the internet to other machines without them needing to join the VPN network. I am talking something about https://portmap.io/
It can be any port other than the already used port for wireguard.
ngoduykhanh
commented
2 years ago Ah, I see what you mean now. It can be done easily using iptables or similar tools on the Wireguard server. However, I don't think it is should be a feature of wireguard-ui as this project is only for managing the wireguard config.
MANKUD
commented
2 years ago I understand but it would be a great feature if was possible via the wireguard-ui just a suggestion.
MANKUD
commented
2 years ago @ngoduykhanh I think wireguard-ui is already doing a fantastic job of managing wireguard config maybe I thought it can do even more in future.
ngoduykhanh
commented
2 years ago @MANKUD I see your point. However, it is not easy to implement that feature to support different deployment scenarios (binary file, docker). Maybe we can build an integration with existing solutions. Since this is not relevant to the core feature of wireguard-ui, I will put the feature request label for this issue and see if we can do it in the future.
MANKUD
commented
2 years ago @ngoduykhanh Maybe this will help.
https://github.com/pritunl/pritunl/commit/023ee6509e62e7d64a9cd4e008e19972ef33ba67
https://github.com/pritunl/pritunl/commit/c3ff9e2fed314a009dd3bf7875a35abe89f1eadf
https://github.com/pritunl/pritunl/commit/01ff772b23f68f49e30dd68d90fbf874c2a6ab72
Another reference to a very good video.
Hello,
It would be great if we could open ports on the client machine which is in a private network via the wiregurd server by forwarding the port from server to client machine. So that the client machines listen to requests coming from the internet over that port through the wireguard server's public IP. With this feature, we can open ports on the client machine without opening any ports on the local network router. With this, the client machine is publicly accessible over the internet via the open port through the wireguard server.