This is an automated archive.
The original was posted on /r/wireguard by /u/chaplin2 on 2024-01-15 08:56:02+00:00.
I have a server behind a firewall with no possibility to open ports. Also, only the outgoing 22, 80, and 443 are open, all of them TCP.
I want to expose my server through a VPS in the cloud. I will run a Wireguard server on my server say at port 1234. I will connect the port 1234 at my server by the SSH reverse port forwarding, or an OpenVPN 443/tcp tunnel, to the VPS. On VPS, I will run a reverse proxy. The client will connect to the VPS from the internet with Wireguard, which the reverse proxy will then forward to port 1234 on my local server. That will provide a tunnel from the client to my server, end to end encrypted.
Will this set up work well? The main concern is performance, due to the UDP over TCP.
Also, will SSH slower than OpenVPN tcp tunnel?