lucas/lucas-wiki
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Minor updates

Lucas Mathews
2025-12-28 12:30:43 +01:00
parent f89a36d8f8
commit 6996c2561e
1 changed files with 9 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
reverse_proxy.md

@@ -1,9 +1,9 @@
### Reverse Proxy using a VPS # Reverse Proxy using a VPS
This is a guide to create a reverse proxy using a Virtual Private Server, or VPS so that you can access internally hosted services.  This is a guide to create a reverse proxy using a Virtual Private Server, or VPS so that you can access internally hosted services. 
# My Situation ## My Situation
I host some services from my home lab that I access remotely, such as Home Assistant.  I host some services from my home lab that I access remotely, such as Home Assistant. 
@@ -18,7 +18,7 @@ I have configured a router of my own with, with all traffic sent via [Mullvad VP
Now I need to be able to access my internal services externally, using this same internet connection. Now I need to be able to access my internal services externally, using this same internet connection.
# The Plan ## The Plan
There are some ways I can do this: There are some ways I can do this:
@@ -41,7 +41,7 @@ To make this, I need a few things:
- Be sure to check how much network traffic the VPS allows. Lots have limits, which may or may not be enough for your use case. I am streaming 4k video so I am looking for unlimited bandwidth. - Be sure to check how much network traffic the VPS allows. Lots have limits, which may or may not be enough for your use case. I am streaming 4k video so I am looking for unlimited bandwidth.
2. A router that allows for new VPN interfaces to be created. I use [opnSense](https://opnsense.org/) for my router which does allow this. 2. A router that allows for new VPN interfaces to be created. I use [opnSense](https://opnsense.org/) for my router which does allow this.
# VPS Setup ## VPS Setup
First I need to find a VPS provider. As I said before, I went with a server from [OVHcloud](https://www.ovhcloud.com/en/). First I need to find a VPS provider. As I said before, I went with a server from [OVHcloud](https://www.ovhcloud.com/en/).
@@ -66,7 +66,7 @@ Once I purchased the server and it had provisioned, I connected and set up a few
`sudo ufw enable` `sudo ufw enable`
4. Enabled the edge firewall on my hosting provider.  4. Enabled the edge firewall on my hosting provider. 
# VPN Setup ## VPN Setup
After this it is time to install WireGuard VPN on the VPS. After this it is time to install WireGuard VPN on the VPS.
@@ -95,9 +95,8 @@ For the gateway, it does not matter, just as long as it is unique.
Then in the Peers tab: Then in the Peers tab:
The Pubic Key is the Public key from the WireGuard Server on the VPS - The Pubic Key is the Public key from the WireGuard Server on the VPS
- The Endpoint Address is the public IP of the VPS.
The Endpoint Address is the public IP of the VPS.
![](images/wireguard_peer.png) ![](images/wireguard_peer.png)
@@ -128,7 +127,7 @@ AllowedIPs = 10.0.20.0/24, 10.0.10.0/24
PersistentKeepalive = 25 PersistentKeepalive = 25
``` ```
# Network Setup ## Network Setup
Now an interface needs to be created on my router for the new VPN connection so that I can configure firewall rules to allow and deny access.  Now an interface needs to be created on my router for the new VPN connection so that I can configure firewall rules to allow and deny access. 
@@ -148,7 +147,7 @@ After this, I created the below firewall rule so that the new WireGuard interfac
If you have any strange issues, check the routing table (System > Routes > Status) to see if there are any old entries that need to be deleted.  If you have any strange issues, check the routing table (System > Routes > Status) to see if there are any old entries that need to be deleted. 
# Reverse Proxy ## Reverse Proxy
For the reverse Proxy I am using [Nginx Reverse Proxy Manager](https://nginxproxymanager.com/) running in a Docker container. For the reverse Proxy I am using [Nginx Reverse Proxy Manager](https://nginxproxymanager.com/) running in a Docker container.