2021-03-24 11:49:49

Serving content locally outside a namespace

I am running a service on a local machine from within a dedicated namespace ns1 with an wireguard interface wg0 as its only network interface, like so:
From wg0.conf, I have set "AllowedIPs =", so any connection attempt is routed via wg0, as expected.

However, I would like to reach that service from within my local network ( without having to join the wireguard vpn ( Obviously, because wg0 is the only interface in ns1, I cannot reach that service from my local network. My first idea was to use a veth to connect ns1 and the global namespace and then bridge the networks. That would require a special route within ns1 for via veth.

To me this idea seems overly fiddly, though. Am I missing some other obvious solution here? Thanks!


