Jaryl Chng's Knowledge Base en-us microfeed.org episodic false https://kb.jarylchng.com Welcome to the index page of my knowledge base, if you haven't done so, do visit my website at https://jarylchng.com.

I will mainly use this site to document stuff, most of which will likely be in the public domain.

]]> Jaryl Chng Jaryl Chng's Knowledge Base https://kb-static.jarylchng.com/kb-jarylchng-com/production/images/channel-c68f1f55f856ab833b4365991609dbec.png https://kb.jarylchng.com ©2024 Linux - Port Forwarding Through a VPS With The Help of WireGuard and iptables z4FxEVf3KT_ Sat, 06 Apr 2024 16:16:47 GMT false Recently I wanted to host a Minecraft server on a network that I can not port forward with. Although this can be done with an SSH tunnel too, I believe Wireguard will give a slightly better performance overall.

Commands

Add

iptables -t nat -A PREROUTING -p tcp -d 123.123.123.123 --dport 25565 -j DNAT --to 10.123.123.123:25565
iptables -A FORWARD -p tcp -d 10.123.123.123 --dport 25565 -j ACCEPT
iptables -t nat -o wg0 -A POSTROUTING -j MASQUERADE

Delete

iptables -t nat -D PREROUTING -p tcp -d 123.123.123.123 --dport 25565 -j DNAT --to 10.123.123.123:25565
iptables -D FORWARD -p tcp -d 10.123.123.123 --dport 25565 -j ACCEPT
iptables -t nat -o wg0 -D POSTROUTING -j MASQUERADE
  • Change 123.123.123.123 to your external facing server's public IP address
  • Change 10.123.123.123 to the server's Wireguard IP address
  • Change all instances of 25565 to a port you wish to forward
  • Change wg0 to your Wireguard interface name
]]> https://kb.jarylchng.com/i/linux-port-forwarding-through-a-vps-with-the-hel-z4FxEVf3KT_/ full