All Questions
530
questions
1
vote
0
answers
14
views
How to set up routing and firewall to achieve the desired result in this specific scenario (selective routing through wg tunnel)?
I have 2 linux computers connected via wireguard over the internet.
Their wg configuration is as follows.
Computer1:
[Interface]
PrivateKey = <computer1-private-key>
Address = 10.6.0.2/24
...
- 11
0
votes
1
answer
52
views
Linux Docker compose container cannot ping another bridged Docker container
Overview
I need a Docker Compose zabbix host to ping a host on a containerlab docker network.
These two Docker networks run under a linux Docker host machine as below... This information comes from ...
- 1
1
vote
0
answers
29
views
Linux - Preserve client IP Addresses when connecting to game server over wireguard VPN tunnel from VPS
My question is almost perfectly summarised here:
Preserve connecting clients IP address through an OpenVPN tunnel
And the solution provided in that post hints at what I need to do, and have been ...
- 11
0
votes
0
answers
31
views
How do i use IPTables to forward a port to a different local ip when using DMZ
My router software is garbage, it only allows forwarding certain ports, luckly i found out that DMZ works, i have a linux server, can i point DMZ to that linux server and just use it to forward ports ...
- 1
0
votes
0
answers
29
views
Docker container not recieving packets from specific port
So I have an instance in Oracle cloud, running OL7. In that instance I'm trying to setup some docker containers with multiple servers. These container should be reachable from the outside on different ...
0
votes
0
answers
46
views
How to prevent iptables NAT caused network jitter?
Background is as follows:
Currently, we have an OpenVPN tunnel that connecting from Point A to Point B (Point B has a public IP address), but if the internet route is suboptimal, the latency is quite ...
- 41
0
votes
1
answer
26
views
Communication between 2 internal NICs when using ip tables to route internrt
My Setup:
In my home setup, I have 3 NICs one that is connected to the internet (enp1s0),
The other two forward internet access to local devices (enp2s0 & enp3s0).
PC1 is connected to enp2s0 with ...
0
votes
0
answers
72
views
Linux 6.5 netfilter NAT reuses TCP ports in TIME_WAIT status?
In my understanding, Linux (netfilter)'s NAT doesn't reuse TCP ports in TIME_WAIT status, but seemingly Linux >= 6.5 reuses TCP ports in TIME_WAIT, even if the destination is the same.
For example, ...
- 41
3
votes
1
answer
530
views
Access remote SSH tunnel from inside docker container
I have a webserver on my MacBook in my home network behind a NAT, serving on port 80.
I also have a publicly accessible server running Ubuntu, from which I want to access my local webserver, so I open ...
- 151
0
votes
3
answers
88
views
iptables not dropping udp port for exact ip address
My iptables rules are as follows:
-P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-N f2b
-A INPUT -p tcp -m multiport --dports 80,443 -j f2b
-A INPUT -d (my public facing ip)/32 -p udp -m udp --...
- 93
0
votes
2
answers
97
views
What determines if a packet should be routed locally or forwarded?
As seen in the diagram, when the Linux kernel receives a packet, it goes through the prerouting chain, and then a routing decision is made on whether to forward it to somewhere else or deliver it to a ...
- 138
0
votes
0
answers
44
views
Route all TCP traffic from port to another host:port
I have a wireguard config, creating a VPN between a remote server (10.0.1.1) and my local machine (10.0.1.2), so that the server can reach the local machine and vice versa.
I'd like the server to ...
- 125
0
votes
1
answer
43
views
How can I simulate NAT reflection failure with `iptables`?
Let's say that:
My workstation LAN IP is 192.168.0.101
My WAN IP is 12.34.56.78.
My consumer-grade router is port-forwarding WAN:80 to 192.168.0.101:8080
NAT Reflection / Hairpinning is working
So ...
- 963
0
votes
2
answers
101
views
iptables port REDIRECT works locally but not from outside
I have a server that can only listen to port 23006. I want to access it from outside and on port 443.
I have systemctl setup:
$ sudo sysctl --system
* Applying /usr/lib/sysctl.d/50-pid-max.conf ...
* ...
- 1
0
votes
0
answers
46
views
How to redirect traffic coming from exterior to a proxy chains of 2 proxy?
I'm using redsocks to redirect the incoming non-local traffic to forward it to a socks5 proxy. Unfortunately,redsocks does not support proxy chaining, So I tried to do a turn around by running 2 ...
- 13