February 18, 20251 yr Hi there, I am woefully inexperienced at networking and as such, am pulling my hair out. I've tried my best to come as far as I can but I'm stuck at the last hurdle, I am hoping someone here can help. I started off with a simple objective: Hide my minecraft server IP. I am now 5 hours deep and teetering the line of madness & genius. I have an Amazon EC2 instance which I've setup as a Peer of my Unraid's Wireguard. I am able to receive 25565 traffic on the EC2 instance and this does get communicated back to unraid through the wg0 tunnel. The problem is that I'm running an AMP server on a Debian VM, and so I actually need those 25565 packets to get communicated to the VM instead of Unraid (and for communication to go back). I'm not sure how to go about this, I've tried messing with routing tables, and forwardings on Unraid/VM - but as I mentioned I am extremely green to networking and can't make heads or tails of it. Does anyone have any ideas? If you need diagrams or to see the results of any commands e.g. `ip route` - I'll get the post edited as quickly as I can Thanks a million, K Edited February 18, 20251 yr by vK31RON
February 18, 20251 yr Author Solution NEJ! I just got it working by what I believe is not the cleanest solution - and will most likely have consequences I haven't seen yet, but I've essentially had Unraid use the iptables PREROUTE/POSTROUTE feature to forward all incoming 10.253.0.5 25565 reqs to the VM. It's good enough for me right now, I'll be back if I run into more problems 👏 I run this user script at array start ``` #!/bin/bash sudo iptables -A FORWARD -i wg0 -d 192.168.0.29 -p tcp --dport 25565 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT sudo iptables -A FORWARD -o wg0 -s 192.168.0.29 -p tcp --sport 25565 -m state --state ESTABLISHED,RELATED -j ACCEPT exit ```
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.