I’m not great with networking or VPNs but I would effectively like to connect my unraid server to a VPS that is based in another location.
I’m not sure If the entire machine or only specific dockers can’t be linked in this way.
If anyone has any guides of tips on this, that would be great
You can even use tailscale which is simpler than WG
Using WireGuard is the easiest method as I just spent an inordinate amount of time getting this to work on Tuesday. If you set it to Autostart it starts with UnRAID so that your entire server connects to the remote network.
Settings → Network Services → VPN Manager
Export the config from your WireGuard server and use the Import Tunnel button to bring it into UnRAID.
Use “VPN tunneled access for system” as the “Peer type of access” value.
Change the port to use what your WireGuard server uses…generally it’s 51820 for reference.
“Peer allowed IP’s” is the subnet you want to access on the remote network (ie 192.168.5.0/24).
I do this through pfsense, so I get total control. This is advanced but probably the way with the most control.
You can also run a docker as a proxy and then forward all your other dockers through that. And there are some dockers with VPN built in.
I still haven’t figured out how to connect to the UnRAID server from the remote network using the wg-Easy container. It’s annoying me.
I’m not sure If the entire machine or only specific dockers can’t be linked in this way.
You can do either
If you do it in the Wireguard settings and set it to auto-start, the whole server will connect to the VPN
Or you can setup a specific docker container to connect to the VPN, and then have other containers use that container for their own connection. The nice thing about this is that you can point containers at the VPN without having to get a version that has the VPN built in, and you can share one VPN connection with multiple dockers if you don’t want the whole server to connect
Starfish can actually fly, but they choose not to because they prefer being underwater.
I set up tailscale recently between my phone and server but haven’t been able to access my server remotely. Shows they’re connected but no luck. Ended up just using wireguard, but that has had its own issues over the past few weeks.
Really feel like I’m going crazy at this point lol
i was looking into this, could you point me to guide or article on tailscale?
Would this make the entire Unraid server connect through the wireguard connection? And would the Unraid server still be locally accessible through the lan IP?
Avec PFsense tu as un appareil physique supplémentaire?
It’s like to browse the internet with it via a VM or a Firefox docker install.
Link it to my Storj instance.
Download Linux ISOs when needed
Set your phone to use the unraid box as an exit node.
Also allow/specify subnets.
Subnet routing must be added.
Stop tailscale on unraid.
Edit the container
Add the following to the Container Variable: UP_FLAGS
-advertise-exit-node --advertise-routes=0.0.0.0/24
Replace 0.0.0.0/24 with your lan IP.
Example if your router is 192.168.1.1
Then use --advertise-routes=192.168.1.0/24
When using tailscale use your server in the app as the exit node.
log into your tailscale admin panel on the web and make sure the options are enabled.
If you want to use a full tunnel (all internet traffic goes through the VPN) then you can set the “Peer allowed IP’s” to 0.0.0.0/24, otherwise, while the server will be able to see the remote networks like 192.168.5.0/24 only traffic destined for the remote network will traverse the VPN.
I’m not sure about the “full tunnel” and I can’t test right now as I’m not where that machine is should I screw it up, however, with the split-tunnel approach of using 192.168.5.0/24 it’s accessible via the local network IP as that’s how I’m using it currently.
Avec PFsense tu as un appareil physique supplémentaire?
Yes I do have a separate device. It can be a low power PC (mini PC). You can run it as a VM on Unraid. But it makes it more fragile. Because every time you reboot unraid, or make changes to the Array/Settings, you will disconnect the VM and lose DNS & DHCP on your entire network.
Sorry, I’m very new to this.
In my phone app (android) I hit the dropdown and there’s a run exit node option. I started that but still was unable to access my server using the ip address copied from the tailscale app.
Thanks for the detail response! I’ll give this a go next chance I get!
Ah that makes sense, thanks!
