Isn’t this very very similar to what Tailscale does? Just at a lower scale?
I’d say that Tailscale does way more than NAT traversal. It is a great service.
The problem is, that tailscale is not open source. To achieve a similar service you have to build it on your own…
At least parts of it are open source: https://github.com/tailscale
Is Wireguard a good solution if I want to host a web server that only trusted devices can even see?
I use it like that, just make sure all your trusted devices have WireGuard.
Is there a guide you used? The best I have so far is @cadey’s
would have been nice to use RFC example IP range instead of the public IPs used in the examples.
maybe this example is trying to reinforce Dynamically Addressed Peers, and using RFC ips only would not take as much attention of the reader as using 184.108.40.206, 220.127.116.11 or 18.104.22.168…