Hi,
i installed Diet-Pi + PiVPN + PiHole and a Rasbian lite + PiHole + PiVPN.
It seems, that PiVPN does not automaticly open the needet port.
Here is some output from the installation:
::: Your system is up to date! Continuing with PiVPN installation...
::: Checking for git... already installed!
::: Checking for tar... already installed!
::: Checking for wget... already installed!
::: Checking for curl... already installed!
::: Checking for grep... already installed!
::: Checking for dnsutils... already installed!
::: Checking for whiptail... already installed!
::: Checking for net-tools... already installed!
::: Checking for bsdmainutils... already installed!
::: Checking for dhcpcd5... already installed!
::: Checking for iptables-persistent... not installed!
::: Package iptables-persistent successfully installed!
::: Static IP already configured.
::: Using User: pivpn
:::
::: Checking for existing base files...
::: Checking /usr/local/src/pivpn is a repo...::: Cloning https://github.com/pivpn/pivpn.git into /usr/local/src/pivpn... done!
::: Using VPN: WireGuard
::: Installing WireGuard from Debian package...
::: Adding Raspbian repository...
::: Updating package cache...
::: Checking for raspberrypi-kernel-headers... not installed!
::: Checking for wireguard... not installed!
::: Checking for wireguard-tools... not installed!
::: Checking for wireguard-dkms... not installed!
::: Checking for qrencode... not installed!
::: Package raspberrypi-kernel-headers successfully installed!
::: Package wireguard successfully installed!
::: Package wireguard-tools successfully installed!
::: Package wireguard-dkms successfully installed!
::: Package qrencode successfully installed!
[i] Listening on all interfaces, permitting origins from one hop away (LAN)
::: Backing up the wireguard folder to /etc/wireguard_2020-08-25-224039.tar.gz
::: Server Keys have been generated.
::: Server config generated.
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables/1.8.2 Failed to initialize nft: Protocol not supported
iptables-save/1.8.2 Failed to initialize nft: Protocol not supported
::: Install Complete...
iptables -L is empty.
This is not a problem with the router, The router was configured to exposed Host for ipv4 and ipv6 for the pi.
On both systems i was unable to open the firewall for port 22 and 51820.
What i tried:
disable firewall (systemctls stop netfilter.service)
Add iptables rules (Problems due to switch to nftables i guess)
Installed Webadmin and opened the firewall.
reinstalled everything a couple times
And a few other tries i lost track of.
Maybe this is a noobquestion, but i spent 7 hours trying to open a goddamn firewall and im sick of it. I would appreciate it, if somebody could help me out with this
So the question: What is the correct way to open the firewall on Diet-Pi/Rasbian (lite) for specific ports so i can reach the pi from the internet?
greetings
bramuna