saltyorg / Saltbox

Ansible-based solution for rapidly deploying a Docker containerized cloud media server.
https://docs.saltbox.dev
GNU General Public License v3.0
634 stars 69 forks source link

CGNAT self hosted Wireguard tunnel #127

Open saltydk opened 1 year ago

saltydk commented 1 year ago

Consider implementing a role that can setup a layer 4 Traefik router with optional tunnel/vpn container that routes traffic to a CGNAT home server.

Chosen solution will be HAProxy with Header and SNI based routing depending on the protocol used (HTTP/HTTPS) and will not be considering other protocols for now. So applications that need open ports outside of regular HTTP/HTTPS will not be covered by this initial implementation.

saltydk commented 7 months ago

Finally got around to looking at this and first solution will be deploying Wireguard and HAProxy on a server and then have that tunnel be the source of access to Traefik.

I will likely need testers for this to work out any setup kinks as far as usability goes. Feel free to reach out on discord if you are in this target audience and we haven't released this yet.