You’re describing split tunneling. If you’re unfamiliar, just look it up. It’s how most VPNs in workplaces are deployed when you only want specific access to specific things. Just need to change the route rules in your Wireguard config, and set the correct forwarding.
This is a very confusing setup, and I’m not sure what the intent or end goal is here, but it sounds like you just want split-tunneling for a specific subnet that puts traffic where you want it to go.
The problem with this is that you need something specific to differentiate traffic because source won’t be enough: DNS, IP subnet, origin port…etc. VLANs won’t work with Wireguard, and I’m not sure you want to go down the rabbit hole of trying to tag other traffic if youre not sure what it is.
deleted by creator
Do you have too much time to rant here but not read the articles you asked for? Lol 🤡
Well because one is WAY WORSE than the other, and the response of commitment is way different. You’re just plain wrong.
Wow. You do you, budday.
You seem REALLY on the Microtik brand for some reason. I presented one that didn’t have those issues, you retorted with some stuff, I responded with valid issues. What’s your problem?
As far as warranty goes, Trendnet does Lifetime for their enterprise metal devices, which OP mentioned being interested in. Just looked at Microtik official warranty page, and it says to email support. Big difference.
Have run hundreds of these and never had an issue. Never even had to do an RMA out of the box.
If you’re seeing packet loss on switches, you may need to pay attention to what “port speed” and total “switch fabric” speeds are these days. You can have a 10 port 1Gb switch, but the total fabric only does 6Gb.
Gonna disagree here. Microtik is a problematic company at best. They’re super lax on security, and they’ve had a lot of issues with their products in general. They also offer no real warranty, but I assume that’s because they aren’t a dedicated networking company (they make other things).
Just last year the flags were raised on dated firmware that left something like a million devices vulnerable, and their response was lacking.
On the plus side: they are part of the EU, so data protection laws apply, and they do seem to be in the forefront on uptake of modern equipment and standards.
Trendnet makes solid stuff. Good warranty, US based.
Rsync
Why do you need m.2 storage?
Yes, of course, it’s all microservices. It wouldn’t scale much at all if this wasn’t possible.
Yeah…I’m not sure where you’re confused, but that’s what I said. You can’t have: Client > HTTP Proxy > HTTPS endpoint. It doesn’t work that way. Enabling TLS on the forward proxy where the client makes the initial request fixes this…which is what I explained.
Well everyone here is telling you what the problem is. If you’re trying to go by every step in that blog post you linked, that’s wrong for what you’re trying to do. That’s a reverse proxy for HTTP requests.
Nooooo…that’s not what I’m saying.
I’m seriously not trying to be rude here, but I went and read the rest of the thread just now. Your understanding of processes, networks and VPNs is wildly misinformed. I think you need to spend some time learning about each before you go and dismiss what everyone is telling you here, which is that you’re trying to make an overcomplicated and very inefficient VPN right now.
Running a torrent client through a proxy doesn’t isolated a process. Especially not when you’re pushing the traffic through a local proxy. You also don’t need to forward any ports.
Connect to the VPN, make sure your traffic is routing there properly, and you’re done. OR, you really want a proxy, you setup a proxy. You don’t need both, and neither gains you any security. If you’re concerned about process isolation, that’s a whole other thing you should read up on.
I think you’re missing the point of what a proxy is. You don’t need a proxy in this scenario if you’re connected with Wireguard…
How would it know what to send? Why are you bothering if Unbound if you know how all the networking works?