{"id":1331,"date":"2023-01-22T10:58:05","date_gmt":"2023-01-22T09:58:05","guid":{"rendered":"https:\/\/apfelcast.com\/?p=1331"},"modified":"2023-01-22T10:58:05","modified_gmt":"2023-01-22T09:58:05","slug":"ds-lite-ipv6-portfreigaben-erstellen-inkl-reverseproxy-und-vpn-server","status":"publish","type":"post","link":"https:\/\/it-ion.de\/index.php\/2023\/01\/22\/ds-lite-ipv6-portfreigaben-erstellen-inkl-reverseproxy-und-vpn-server\/","title":{"rendered":"DS-Lite \/ IPv6 Portfreigaben erstellen inkl. ReverseProxy und VPN-Server"},"content":{"rendered":"\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n <div class=\"brlbs-cmpnt-container brlbs-cmpnt-content-blocker brlbs-cmpnt-with-individual-styles\" data-borlabs-cookie-content-blocker-id=\"default\" data-borlabs-cookie-content=\"PGlmcmFtZSB0aXRsZT0iRFMtTGl0ZSAvIElQdjYgUG9ydGZyZWlnYWJlbiBlcnN0ZWxsZW4gaW5rbC4gUmV2ZXJzZVByb3h5IHVuZCBWUE4tU2VydmVyIiB3aWR0aD0iNzIwIiBoZWlnaHQ9IjQwNSIgc3JjPSJodHRwczovL3d3dy55b3V0dWJlLmNvbS9lbWJlZC9rSUswSTlkd1hoOD9mZWF0dXJlPW9lbWJlZCIgZnJhbWVib3JkZXI9IjAiIGFsbG93PSJhY2NlbGVyb21ldGVyOyBhdXRvcGxheTsgY2xpcGJvYXJkLXdyaXRlOyBlbmNyeXB0ZWQtbWVkaWE7IGd5cm9zY29wZTsgcGljdHVyZS1pbi1waWN0dXJlOyB3ZWItc2hhcmUiIGFsbG93ZnVsbHNjcmVlbj48L2lmcmFtZT4=\"><div class=\"brlbs-cmpnt-cb-preset-a\"> <p class=\"brlbs-cmpnt-cb-description\">Sie sehen gerade einen Platzhalterinhalt von <strong>Standard<\/strong>. Um auf den eigentlichen Inhalt zuzugreifen, klicken Sie auf die Schaltfl\u00e4che unten. Bitte beachten Sie, dass dabei Daten an Drittanbieter weitergegeben werden.<\/p> <div class=\"brlbs-cmpnt-cb-buttons\"> <a class=\"brlbs-cmpnt-cb-btn\" href=\"#\" data-borlabs-cookie-unblock role=\"button\">Inhalt entsperren<\/a> <a class=\"brlbs-cmpnt-cb-btn\" href=\"#\" data-borlabs-cookie-accept-service role=\"button\" style=\"display: none\">Erforderlichen Service akzeptieren und Inhalte entsperren<\/a> <\/div> <a class=\"brlbs-cmpnt-cb-provider-toggle\" href=\"#\" data-borlabs-cookie-show-provider-information role=\"button\">Mehr Informationen<\/a> <\/div><\/div>\n<\/div><\/figure>\n\n\n\n<p>In diesem Video zeige ich euch, wie ihr bei einem DS-Lite Anschluss, einem Anschluss hinter einem CG-NAT oder wenn ihr nur eine IPv6 Adresse habt Ports an das Internet \u00f6ffnen k\u00f6nnt. Au\u00dferdem installieren wir direkt einen ReverseProxy, so dass Ihr ganz einfach mehrere Webseiten \u00fcber eueren Internet Anschluss inkl. SSL Zertifikat erreichbar machen k\u00f6nnt.<\/p>\n\n\n\n<p><br>Du ben\u00f6tigst Unterst\u00fctzung bei der Installation oder Konfiguration deines WireGuard VPN-Tunnels? Ich helfe dir gerne weiter! Schreib mir einfach eine Mail an: service@apfelcast.com<\/p>\n\n\n\n<p>\u00bb Ports direkt durchreichen: <a href=\"https:\/\/cc.apfelcast.com\/dz6ck\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/cc.apfelcast.com\/dz6ck<\/a><br>\u00bb VPN-Verbindung ins Heimnetz aufbauen: <a href=\"https:\/\/cc.apfelcast.com\/wo39l\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/cc.apfelcast.com\/wo39l<\/a><\/p>\n\n\n\n<p>\u00bb 20\u20ac Hetzner Startguthaben: <a href=\"https:\/\/hetzner.cloud\/?ref=580VHBiG8SNl\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/hetzner.cloud\/?ref=580VHBiG8SNl<\/a><\/p>\n\n\n\n<p>\u00bb AWOW mini PC VPN Client Server: <a href=\"https:\/\/amzn.to\/3kvryjK\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/amzn.to\/3kvryjK<\/a><\/p>\n\n\n\n<p>\u00bb Relevante Videos:<br>WireGuard VPN Server installieren:<a href=\"https:\/\/www.youtube.com\/watch?v=yOmYfxAFMnM\" target=\"_blank\" rel=\"noreferrer noopener\"> https:\/\/www.youtube.com\/watch?v=yOmYfxAFMnM<\/a><br>WireGuard Site-to-Site VPN: <a href=\"https:\/\/youtu.be\/aiabrnHj6_o\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/youtu.be\/aiabrnHj6_o<\/a><br>HomeServer selbst bauen: <a href=\"https:\/\/www.youtube.com\/playlist?list=PLLg1WgOBYXOs3dFOlaujpPLXVkq06btrk\">https:\/\/www.youtube.com\/playlist?list=PLLg1WgOBYXOs3dFOlaujpPLXVkq06btrk<\/a><\/p>\n\n\n\n<div id=\"93964-1\"><script src=\"\/\/ads.themoneytizer.com\/s\/gen.js?type=1\"><\/script><script src=\"\/\/ads.themoneytizer.com\/s\/requestform.js?siteId=93964&amp;formatId=1\"><\/script><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Im Video verwendete Befehle:<\/h3>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"shell\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">###### WireGuard Tunnel ######\n\n## install WireGuard ##\napt install wireguard\n\n## enbale ip forwarding ##\nnano \/etc\/sysctl.conf\n\nuncomment net.ipv4.ip_forward=1\n\n## apply changes ##\nsysctl -p\n\n## generate public and private keys ##\ncd \/etc\/wireguard\numask 077; wg genkey | tee privatekey | wg pubkey > publickey\n\n--> site 1 (server)\n\n## create wg0.conf\n\nnano \/etc\/wireguard\/wg0.conf\n\n[Interface] \nPrivateKey = &lt;site-1 private-key>\nAddress = 10.0.0.1\/24\nSaveConfig = true \nPostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE\nPostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE\nListenPort = 51820\n\n[Peer]\nPublicKey = &lt;site-2 public-key>\nAllowedIPs = 10.0.0.0\/24, 192.168.178.0\/24\nPersistentKeepalive = 25\n\n--> site 2 (client)\n\n## create wg0.conf\n\n[Interface] \nPrivateKey = &lt;site-2 private-key>\nAddress = 10.0.0.3\/24\nSaveConfig = true \nPostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE\nPostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE\n\n[Peer] \nPublicKey = &lt;site-1 public-key>\nEndpoint = &lt;FQDN>:51820 \nAllowedIPs = 10.0.0.0\/24\nPersistentKeepalive = 25\n\n--> on site 1 and 2\n\n## start connection ##\nwg-quick up wg0\n\n## show status ##\nwg show\n\n\n######## Nginx Proxy Manager ########\n\n## install Docker &amp;&amp; Docker-Compose ##\n\napt install docker.io &amp;&amp; apt install docker-compose -y\n\n## create projekt directory and open it ##\nmkdir npm\ncd npm\n\n## create docker congig.json ##\nnano config.json\n\n{\n  \"database\": {\n    \"engine\": \"mysql\",\n    \"host\": \"db\",\n    \"name\": \"npm\",\n    \"user\": \"npm\",\n    \"password\": \"npm\",\n    \"port\": 3306\n  }\n}\n\n## creacker docker-compose.yml ##\nnano docker-compose.yml\n\nversion: \"3\"\nservices:\n  app:\n    image: jc21\/nginx-proxy-manager:latest\n    restart: always\n    ports:\n      - 80:80\n      - 81:81\n      - 443:443\n    volumes:\n      - .\/config.json:\/app\/config\/production.json\n      - .\/data:\/data\n      - .\/letsencrypt:\/etc\/letsencrypt\n    depends_on:\n      - db\n    environment:\n    # if you want pretty colors in your docker logs:\n    - FORCE_COLOR=1\n  db:\n    image: mariadb:latest\n    restart: always\n    environment:\n      MYSQL_ROOT_PASSWORD: \"npm\"\n      MYSQL_DATABASE: \"npm\"\n      MYSQL_USER: \"npm\"\n      MYSQL_PASSWORD: \"npm\"\n    volumes:\n      - .\/data\/mysql:\/var\/lib\/mysql\n      \n      \n## build the conatiner ##\ndocker-compose up -d\n\n## acess via web browser ##\nhttp:\/\/hostip:81\n\n## default login ##\nuser: admin@example.com\npw: changeme\n\n######## IP Tables Forwarding  ########\n\niptables -t nat -A PREROUTING -p tcp --dport 81 -j DNAT --to-destination 10.0.0.1:81\n\niptables -t nat -A POSTROUTING -j MASQUERADE\n\n\n######## WireGuard automatisieren ########\n\n## enable on system boot ##\nsystemctl enable wg-quick@wg0\n\n\n<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>In diesem Video zeige ich euch, wie ihr bei einem DS-Lite Anschluss, einem Anschluss hinter&#8230;<\/p>\n","protected":false},"author":1,"featured_media":1332,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_kad_blocks_custom_css":"","_kad_blocks_head_custom_js":"","_kad_blocks_body_custom_js":"","_kad_blocks_footer_custom_js":"","_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-1331","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein"],"taxonomy_info":{"category":[{"value":1,"label":"Allgemein"}]},"featured_image_src_large":["https:\/\/it-ion.de\/wp-content\/uploads\/2023\/01\/Thumb_IPv6_V2-1024x576.jpg",1024,576,true],"author_info":{"display_name":"Daniel Klozb\u00fccher","author_link":"https:\/\/it-ion.de\/index.php\/author\/wp-master\/"},"comment_info":0,"category_info":[{"term_id":1,"name":"Allgemein","slug":"allgemein","term_group":0,"term_taxonomy_id":1,"taxonomy":"category","description":"","parent":0,"count":89,"filter":"raw","cat_ID":1,"category_count":89,"category_description":"","cat_name":"Allgemein","category_nicename":"allgemein","category_parent":0}],"tag_info":false,"_links":{"self":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/posts\/1331","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/comments?post=1331"}],"version-history":[{"count":0,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/posts\/1331\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/media\/1332"}],"wp:attachment":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/media?parent=1331"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/categories?post=1331"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/tags?post=1331"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}