Hello All,
I've been working on separating my virtual machines and containers from my home network. I've successfully set up a simple SDN zone to serve as an isolated network, achieving my primary objective. Now, I aim to route all traffic from this SDN through a VPN tunnel to a cloud-hosted VPN. For clarity, imagine SDN A connecting to VPN Server A, which would serve as the gateway for all virtual machines on SDN A. For example, if I host a service on port 1234 on a virtual machine within SDN A, it should be accessible via port 1234 on the VPN server's public IP address. I use Cloudflare tunnels right now but am wanting to start moving away from it for better control.
My initial attempt at this involved using an OPNsense virtual machine as the SDN gateway and establishing a site-to-site WireGuard VPN to an OPNsense VPS. However, I couldn't access any hosted services from the internet, despite being able to browse the internet and verify the VPN connection through whatismyip.com. I'm wondering if I'm missing something or if there's a way to accomplish this without an OPNsense VM, perhaps using another type of SDN. My goals are to avoid configuring WireGuard on each virtual machine and container as a separate VPN client, to completely isolate my virtual machines from my home network, and to make services available on the internet without port forwarding on my home router. I believe this setup is feasible, as I've seen similar ones, but none exactly like what I'm attempting. As I'm relatively new to SDNs, I welcome any guidance, no matter how basic it may seem. Any assistance is greatly appreciated.
I've been working on separating my virtual machines and containers from my home network. I've successfully set up a simple SDN zone to serve as an isolated network, achieving my primary objective. Now, I aim to route all traffic from this SDN through a VPN tunnel to a cloud-hosted VPN. For clarity, imagine SDN A connecting to VPN Server A, which would serve as the gateway for all virtual machines on SDN A. For example, if I host a service on port 1234 on a virtual machine within SDN A, it should be accessible via port 1234 on the VPN server's public IP address. I use Cloudflare tunnels right now but am wanting to start moving away from it for better control.
My initial attempt at this involved using an OPNsense virtual machine as the SDN gateway and establishing a site-to-site WireGuard VPN to an OPNsense VPS. However, I couldn't access any hosted services from the internet, despite being able to browse the internet and verify the VPN connection through whatismyip.com. I'm wondering if I'm missing something or if there's a way to accomplish this without an OPNsense VM, perhaps using another type of SDN. My goals are to avoid configuring WireGuard on each virtual machine and container as a separate VPN client, to completely isolate my virtual machines from my home network, and to make services available on the internet without port forwarding on my home router. I believe this setup is feasible, as I've seen similar ones, but none exactly like what I'm attempting. As I'm relatively new to SDNs, I welcome any guidance, no matter how basic it may seem. Any assistance is greatly appreciated.