Hello, simple question : I have a Wireguard Docker container running on my main server and it works fine with a simple NAT rule. Is there any advantage, in terms of security for instance, to using the instance of Wireguard provided by the router or should I just {If it ain’t broke, don’t fix it} ?
My aim is mainly to be able to access my self-hosted stack in ssh or to monitor it through web interfaces. But it can also be used have an endpoint in my country to be able to cast TV programs that are available locally when abroad.
I am the main user and my daughter uses it once in a while.
General best practice is not couple systems together, so each can be maintained separately and painlessly.
In your case it sounds like an exit node use case instead of site-to-site so wg-easy might be more appropriate (along other composes).
From a security point of view if it’s indeed for exit node, I would also recommend to have a look of tailscale as it makes lots of things easier.
1 Like