I have this very small homelab with OpnSense as firewall / router and an Unraid server behind it. The Unraid server is mostly used as a NAS but also hosts some docker containers.

Im thinking of setting up a Wireguard VPN. Both OpnSense and Unraid allows to set that up.

Looks to me like the Unraid setup might be easier / cleaner involving docker, but makes more sense to me to install this on the firewall, just a gut feeling…

Any advices? should i setup Wireguard on the OpnSense box or the Unraid box?

  • sparlocktats@alien.topB
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    I’d say set it up on the OPNsense machine. It already handles all your firewall/NAT stuff so it’ll be easier to manage. With the wireguard service on the unraid, you’ll have two machines to configure.

    • CrapuleJack@alien.topOPB
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Thanks for you advise.

      I must say since I asked I did set up using docker/unraid and the package wg-easy.

      It could not have been more simple and does exactly what i need; i did not have to touch the firewall besides opening a port.

      Granted my need is ultra simple and if i was to have any more complexity (lets say more than a few other users for example) it would be totally worth learning opnsense a little more and do the setup there. wg-easy does what it says on the tin but does not allow for much customisation… wich is the point really.

      Again thanks for the answer