I make a cfg file for each peer and send it to them to import into their WireGuard client. Costs them nothing. I can disable the peer at my router if there’s any funny business.
Wireguard only listens on 1 port and it won’t be the one that’s for jellyfin/plex/emby etc.
Thanks a ton, very helpful!
Sorry, not trying to claim anything, more like saying “I see you told me I misunderstand VPNs, but I think your explanation aligns with the understanding I have and described in my post. I was just asking if there was more to it than what I currently understood.”
I was, however, grateful for the response and the clarification provided, so of course I thanked them, and I did also double check to ask whether there was any actual misunderstanding they noticed in my post. I didn’t do this because I was offended that they thought I misunderstood something, I did this to make sure I was understanding them correctly, because if there was something I misunderstood, I’d definitely want to know.
My apologies if you take issue with any of that, I assure you I’m just here to learn and I’m trying to be polite to the people that are helping me.
Sounds perfect! I did change my external port to something else, but I guess it doesn’t really matter as long as they don’t have the keys to my Wireguard. Well, sweet! I won’t worry about dodging the work Wi-Fi anymore haha
Yeah, I think the bigger cost would be that the parents who currently have the Netflix account (that we used to share) would not be interested in having the Wireguard machine up and running all the time, if I could even convince them to install it. I’m not too worried about pushing for it since I didn’t watch Netflix very often anyways even when I had access to it, but if things ever change I will definitely keep this in mind as an option!!
Just to be sure, would you just set the peer’s endpoint (in the location that doesn’t have Netflix but you want to access Netflix from) to be the external IP of the network that does have a Netflix login? I think that makes sense but wanted to double check
Oh yeah, I don’t have Jellyfin/Plex or anything else like that yet. But if I were to set it up, how would you protect the additional port used for that? No worries if you aren’t sure or if it’s pretty involved, I can do some of my own research if needed!
I mean you didn’t modify your misunderstanding of VPN and just claimed that it was all good lol
It’s literally describing an encrypted tunnel, people obsessed with proxy anonymity such as ‘increase your internet privacy with a surfshark VPN!’ seem to have a shallow level of understanding
Wireguard is a protocol that isn’t hardened from anything except that it will ignore anything on port 51280 that doesn’t have a valid key pair on an allowed virtual IP. Clients can edit their config how they like and allowedIPs for them is what ip to send down the tunnel. That can be 192.168.0.1.
Thanks to the helpful first comment, I don’t think I had a misunderstanding to begin with- can you point to the misunderstanding in the original post? I’m not trying to be difficult, I would genuinely appreciate it. From my perspective, my original post was essentially “I’ve got an encrypted tunnel. I know some VPNs are set up to offer more than that. Does Wireguard have potential for anything more than that?” And it turns out the answer was essentially “no” which is great, and aligns with my original understanding.
Awesome, that all makes sense, I appreciate it!
You project confusion when asking things like if it has the potential for anything more than that, it’s fundamentally asking like if IPv4 could provide more features in a packet.