Hello everyone,
I need your help.
Part of my private network looks like this
Homelab:
Network: 192.168.1.0
Proxmox server (IP 250)
Wireguard in a Proxmox container (IP 254 - Tunnel IP 10.0.0.2)
VM with various Docker applications IP 202)
VPS server on the Internet:
external IP: 1.2.3.4
Various Docker containers
Wireguard in Docker container (tunnel IP 10.0.0.1)
NPM (Nginx Proxy Manager) in Docker Container
Searxng in Docker Container
I currently have everything running, i.e. I use DNS to point the FQDN of the microservices to the IP 1.2.3.4, where the NPM is then responsible for forwarding them to the respective Homelab or external Docker containers.
My problem: I currently have NO firewall active on the VPS server.
Since I’m not that fit here, I had the copilote AI help me set up the firewall.
The problem I had (I have now restored the snapshot to ‘without firewall’) was that when the firewall was on (it was open for the external ports 80 and 443), I could only access the microservices from my Homelab from outside. The microservices running on the VPS were then no longer available to me. I used the UFW from the Ubuntu server as a firewall.
Example for Searxng Docker Container:
internal port: 80
external port: 12114
Then configured the following in NPM:
Forward http 1.2.3.4 Port: 12114
As I said, without firewall I get Searxng displayed, with firewall no access.
I have now read in passing that Docker and UFW do not work so well together.
For this reason, I am now turning to the forum in the hope of getting help.
Hardware Info of the VPS:
OS version: Ubuntu 24.04.1 LTS
Docker Version: 27.5.1
Docker Compose Version: v2.27.0
Hard drive size: 39G
Free hard drive space: 30G
RAM size: 1.9Gi
Available RAM: 1.2Gi
SWAP size: 0B
Used SWAP: 0B
Greetings H-BLOGX