wireproxy icon indicating copy to clipboard operation
wireproxy copied to clipboard
verified publisher icon pufferffish

Proxies other way around

Open savikko opened this issue 9 months ago • 1 comments

I have usecase where my wireguard peer (running wireproxy) is the one which can connect to some hosts.

I would like to allow connections from peers inside wg network to connect to other hosts (mainly http/https on this case) via wireproxy.

So, consider this as feature request where I would like to see SOCKS5 and/or HTTP proxy published to wg network, routing traffic to outside network via wireproxy.

Anyways, thanks for creating wireproxy, it is a great tool!

savikko avatar May 06 '25 20:05 savikko

Hi @savikko, If I understand what you said correctly, this is already a feature. Use [TCPServerTunnel] to specify the port on which the WG peer should be listening (ListenPort) and the destination host (Target). This exposes TCP sockets that would otherwise only be accessible to the machine running wireproxy to the rest of your WG VPN. Also, in this scenario, the initial connection is incoming, which means it will fail unless wireproxy begins by sending some packet(s) to the WG server to establish a connection to the WG server. You would want to use PersistentKeepalive in your [Peer] section to ensure an outgoing packet is always sent first and the WG server can send you data back when somebody connects.

supernovaw avatar May 28 '25 23:05 supernovaw