A few different articles this week about spinning up a wireguard container/jail/VM ...<p>But it's far, far easier to just fire up an sshd somewhere and 'sshuttle' makes it possible to turn <i>any ssh server that you have a login on</i> into a VPN endpoint:<p><a href="https://sshuttle.readthedocs.io/en/stable/" rel="nofollow">https://sshuttle.readthedocs.io/en/stable/</a><p>You don't even need to be a privileged user - just any old user login, over ssh, and you need python to exist on the remote system.
As people are again asking about vm/jails/docker/...<p><a href="https://blog.jessfraz.com/post/containers-zones-jails-vms/" rel="nofollow">https://blog.jessfraz.com/post/containers-zones-jails-vms/</a><p>It is great article.<p>Bottom line, jails are "in kernel" primitives. Containers are not (or at least they werent when I last checked).
Not seeking a v4/v6 flame war, It would be interesting to see the IPv6 version of this for people who want to use WireGuard to protect IPv6 flows back to "inside" and so much of this is NAT related, its not generally applicable to that case.