Gerbil Wireguard route traffic through VPS #265

New Issue

Closed

opened 2025-11-13 11:54:54 -06:00 by GiteaMirror · 3 comments

GiteaMirror commented 2025-11-13 11:54:54 -06:00

Owner

Copy Link

Originally created by @aaronjoeldev on GitHub (Apr 24, 2025).

Hey,

I have successfully installed Pangolin on my VPS. My current goal is to be able to use my HomeLab services remotely from my iPhone. Since there is currently no Newt solution for the iPhone, I am using Wireguard. I would like to use the rules of Pangolin to whitelist the IP of the iPhone in the VPN. However, my current problem is that with the standard Wireguard config from Gerbil, the traffic is not routed via the VPS and therefore the iPhone does not receive the VPS IP.
I have tried to set allowedIPs to 0.0.0.0/0 so that all traffic goes through the VPS. However, I then no longer have an internet connection.
My approach is now to adjust this via NAT Config on the VPS. Unfortunately, all my attempts so far have been unsuccessful. Is there a specific approach to the Pangolin setup with Gerbil to achieve this?

Thanks in advance

Originally created by @aaronjoeldev on GitHub (Apr 24, 2025). Hey, I have successfully installed Pangolin on my VPS. My current goal is to be able to use my HomeLab services remotely from my iPhone. Since there is currently no Newt solution for the iPhone, I am using Wireguard. I would like to use the rules of Pangolin to whitelist the IP of the iPhone in the VPN. However, my current problem is that with the standard Wireguard config from Gerbil, the traffic is not routed via the VPS and therefore the iPhone does not receive the VPS IP. I have tried to set allowedIPs to 0.0.0.0/0 so that all traffic goes through the VPS. However, I then no longer have an internet connection. My approach is now to adjust this via NAT Config on the VPS. Unfortunately, all my attempts so far have been unsuccessful. Is there a specific approach to the Pangolin setup with Gerbil to achieve this? Thanks in advance

GiteaMirror added the stale label 2025-11-13 11:54:54 -06:00

GiteaMirror closed this issue 2025-11-13 11:54:55 -06:00

GiteaMirror commented 2025-11-13 11:54:56 -06:00

Author

Owner

Copy Link

@oschwartz10612 commented on GitHub (Apr 24, 2025):

Hi!

This is not really a prescribed use case. Gerbil is meant really to accept connections to allow Traefik to access things on the other end of the tunnel. It is not a general purpose WG server where you can connect peer to peer. The automation will not work that way.

That being said we are working on a client VPN solution that will allow you to connect back to your newt at home with wireguard. That is in progress but should be out in a couple of weeks. It might not work on mobile at first but we could look into quick solutions to that.

I think your best bet right now would be to put a wireguard server at home and use pangolin to expose the udp traffic to it so you can connect back home.

@oschwartz10612 commented on GitHub (Apr 24, 2025): Hi! This is not really a prescribed use case. Gerbil is meant really to accept connections to allow Traefik to access things on the other end of the tunnel. It is not a general purpose WG server where you can connect peer to peer. The automation will not work that way. That being said we are working on a client VPN solution that will allow you to connect back to your newt at home with wireguard. That is in progress but should be out in a couple of weeks. It might not work on mobile at first but we could look into quick solutions to that. I think your best bet right now would be to put a wireguard server at home and use pangolin to expose the udp traffic to it so you can connect back home.

GiteaMirror commented 2025-11-13 11:54:56 -06:00

Author

Owner

Copy Link

@github-actions[bot] commented on GitHub (May 9, 2025):

This issue has been automatically marked as stale due to 14 days of inactivity. It will be closed in 14 days if no further activity occurs.

@github-actions[bot] commented on GitHub (May 9, 2025): This issue has been automatically marked as stale due to 14 days of inactivity. It will be closed in 14 days if no further activity occurs.

GiteaMirror commented 2025-11-13 11:54:56 -06:00

Author

Owner

Copy Link

@github-actions[bot] commented on GitHub (May 24, 2025):

This issue has been automatically closed due to inactivity. If you believe this is still relevant, please open a new issue with up-to-date information.

@github-actions[bot] commented on GitHub (May 24, 2025): This issue has been automatically closed due to inactivity. If you believe this is still relevant, please open a new issue with up-to-date information.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dependabot/npm_and_yarn/prod-minor-updates-47a8475ba0

dependabot/npm_and_yarn/dev-patch-updates-c4a0f28f13

dependabot/go_modules/install/minor-updates-a98db8910e

crowdin_dev

dev

delete-domains

dependabot/npm_and_yarn/eslint-10.0.3

dependabot/npm_and_yarn/next-16.1.6

dependabot/npm_and_yarn/recharts-3.7.0

dependabot/go_modules/install/github.com/charmbracelet/huh-1.0.0

dependabot/github_actions/docker/login-action-4.0.0

dependabot/github_actions/actions/setup-node-6.3.0

jit

msg-opt

dependabot/docker/docker/library/node-25-slim

dependabot/github_actions/actions/upload-artifact-7.0.0

dependabot/github_actions/actions/setup-go-6.3.0

cache

multi-role

logs-database

ssh

cloud-multi-org

delete-account

new-pricing

msg-delivery

org-only-idp

cicd

clients-user

1.12.3

policies

patch

site-targets-auto-login

1.16.2-s.7

1.16.2-s.6

1.16.2-s.5

1.16.2-s.4

1.16.2-s.3

1.16.2-s.2

1.16.2-s.1

1.16.2

1.16.2-s.0

1.16.1-s.1

1.16.1

1.16.1-s.0

1.16.0

1.16.0-s.1

1.16.0-s.0

1.16.0-rc.0

1.15.4-s.10

1.15.4-s.9

1.15.4-s.8

1.15.4-s.7

1.15.4-s.6

1.15.4-s.5

1.15.4-s.4

1.15.4-s.3

1.15.4-s.2

1.15.4-s.1

1.15.4

1.15.4-s.0

1.15.3

1.15.3-s.1

1.15.3-s.0

1.15.2

1.15.1-s.1

1.15.1-s.0

1.15.1

1.15.0-s.5

1.15.0

1.15.0-s.4

1.15.0-s.3

1.15.0-s.2

1.15.0-s.1

1.15.0-s.0

1.15.0-rc.0

1.14.1-s.3

1.14.1-s.2

1.14.1-s.1

1.14.1-s.0

1.14.1

1.14.0-s.2

1.14.0

1.14.0-rc.0

1.13.1

1.13.1-s.0

1.13.0

1.13.0.s.0

1.13.0-rc.0

1.12.2-s.5

1.12.3

1.12.2-s.4

1.12.2-s.3

1.12.2-s.2

1.12.2-s.1

1.12.2

1.12.2-s.0

1.12.1

1.12.0

1.12.0-s.0

1.12.0-rc.0

1.11.1

1.11.1-s.0

1.11.0-s.5

1.11.0

1.11.0-s.4

1.11.0-s.3

1.11.0-s.2

1.11.0-s.1

1.11.0-s.0

1.10.3

1.10.2

1.10.1

1.10.0

1.9.4

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.3

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.0

1.3.2

1.3.1

1.3.0

1.2.0

1.1.0

1.0.1

1.0.0

1.0.0-beta.15

1.0.0-beta.14

1.0.0-beta.13

1.0.0-beta.12

1.0.0-beta.11

1.0.0-beta.10

1.0.0-beta.9

1.0.0-beta.8

1.0.0-beta.7

1.0.0-beta.6

1.0.0-beta.5

1.0.0-beta.4

1.0.0-beta.3

1.0.0-beta.2

1.0.0-beta.1

Labels

Clear labels

api

authentication

bug

config

dependencies

docker

documentation

enhancement

good first issue

help wanted

Improvement

Look Into

needs investigating

networking

new feature

non-critical bug

potential bug

pull-request

Mirrored from GitHub Pull Request

question

reverse proxy

Security

stale

ui

No Label stale

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/pangolin#265