• 0 Posts
  • 4 Comments
Joined 1 year ago
cake
Cake day: October 3rd, 2023

help-circle


  • I have two wireguard servers and a reverse proxy (Traefik).

    I have setup my services so that they are only accessible from one wireguard VPN. No matter i am on LAN or WAN.

    Second wireguard server is to connect to different vpn networks that i usually need to push some code or access the dev or prod servers for my projects. I have build wg-easy manually to install many vpn clients within it’s image and configure routes so that they work without problems simultaniously. It all works GREAT. Openvpn, Openconnect, pptp and barracuda VPN.

    I had this setup on my router but i was given this barracuda vpn client which can’t work on devices except X86. Sadly my router is not x86 and i just moved everything and installed all these vpn clients with that barracyda vpn client inside docker container with wg-easy.


  • I run about 30 stacks (about 60 containers) on my 1L mini pc with i5 8500T + 12 GB RAM. If i were to split them in their own VMs it would be impossible to do. I would have run out of resources probably on fourth VM :D. 5.8 GB RAM is free on idle and i also have ZRAM enabled. I work on it too i have code-server and cloudbeaver running on it. I never run out of memory. Although i am thinking to upgrade it to 16 GBs. I know RAM IS CHEAP but i do not need more then 16 GBs on this PC.

    This setup also does not need to be so complex. I have stacks in their own networks isolated and access them solely from wireguard VPN no matter where i am on LAN or connecting from WAN. Wireguard is always on on my laptop and phone.