Keeping the source IP intact means you’ll have troubles routing back the traffic through host B.

Basically host A won’t be able to access the internet without going through B, which could not be what you want.

Here’s how it works:

On host A:

• add a /32 route to host B public IP through your local ISP gateway (eg. 192.168.1.1)
• setup a wireguard tunnel between A and B
• host A: 172.17.0.1/30
• host B: 172.17.0.2/30
• add a default route to host B wireguard IP

On host B:

• setup wireguard (same config)
• add PAT rules to the firewall so to DNAT incoming requests on the ports you need to 172.17.0.1
• add an SNAT masquerade rule so all outbound request from 172.17.0.1 are NATed with host B public address.

This should do what you need. However, if I may comment it out, I’d say you should give up on carrying the source IP address down to host A. This setup I described is clunky and can fail in many ways. Also I can see no benefits of doing that besides having “pretty logs” on host A. If you really need good logs, I’d suggest setting up a good reverse proxy on host B and forwarding it’s logs to a collector on host A.

OpenBSD is the most pleasing expérience I’ve had with an OS. It’s fully contained and has all the tools you need without needing to install anything (eg a DNS, HTTP, SMTP servers, a proxy, a good firewall). All config files look alike and use the same keywords for the same things, making it straightforward to configure everything.

And regarding RAID 1, I’ve never done it myself, but it totally works out of the box (as well as full disk encryption).

OpenBSD for all of them.

Okay, good to know. I guess using a shared system remotely overseas doesn’t help with fast loading times ^^

Do you set the wallpaper from your profile ? I’ve only tried 9 on a remote system but image handling was painfully slow so I gave up on setting the wallpaper from the Rio theme. Maybe that’s faster locally on bare metal ?

Is auto-promotion forbidden ? Also, this game is very unix-y, which is IMO on topic

Why so ? It ticks all the boxes from the Rules section ;)

I’m a huge fan of cwm, but I must say you’re not advocating for it in this shot ^^

Each line is a separate lemonbar process, with its own refresh rate.

Thanks ! That how they look all the time to me haha so I guess it makes me old as well ^^ However I was used to black on white which makes it feel less “old school” I guess (see my usual setup)

There is a link at the top of the post description ;) The goal is to use an old piece of hardware for a week, to appreciate techs that require less resources to run. You can also limit your current hardware to a single CPU core and 512Mib or RAM to try it out!