match on wg packets and redirect

Kalin KOZHUHAROV me.kalin at gmail.com
Sun Nov 4 12:41:49 CET 2018


On Sun, Nov 4, 2018 at 10:10 AM Adrian Sevcenco <adrian.sev at gmail.com> wrote:
>
> Hi! Is there a way to use iptables to match wireguard packets incoming
> on 443 and the redirect them to the actual port?
>
> In many hotels/hostels and other free wifi it seems that only 80+443 is
> allowed but amazingly both tcp and udp...
>
Should be, just don't try to match "wg packets", match instead your
(other) endpoint IP address and port.

And why would you even need to do that?
If you have an endpoint (in cloud, home, etc.) with address 1.2.3.4
and port 443, just connect to that, no iptables should be needed.

And you can still use the same ip to host a https website (it uses tcp) :^D

Cheers,
Kalin.


More information about the WireGuard mailing list