Think of it in terms of INCOMING and OUTGOING trafficā¦
(Just as port-opening a.k.a port-forwarding in a router is needed to host a server or for to have a āhigh-idā using any torrent/emule client.)
Iām no expert, but here goesā¦ :
Troughout a (VPN) network (and/or via using a Proxy), any INCOMING traffic would in all cases need to be correctly routed back to your instance, itās IP, and the specific port yacy is serving.
And as is the designed nature of most VPN services, all peers attempting to do INCOMING traffic to you; All they will naturally see and know, is your VPN exit point and itās IP (and OUTGOING ports.) And any INCOMING traffic to your VPN exit point would need to be lead to the INCOMING port of your YaCy to be a connection.
Someyhing which Iām guessing very few VPN service providers offer, As @iasee said. At least not without additional service costs, since there is only 65535 ports available at any IP.
Your VPN exit point could in many ways be thought of much in the same as a home-router and/or internet gateway. Without it having been set to route a specific port to a port on a LAN IP somewhere, no INCOMING will will be let trough successfully. And a commercial VPN service can have many steps internally, all of which would need to be set to do correct traffic routing in coherent manner, from VPN exit point and back to your instanceās IP and itās YaCy port.
Though, it is certainly possible to achieve in many situation. perhaps trough using a Tor Hidden/Onion Services (though this would require any connecting peers of also accessing yours trough Tor) setup. And/or a VPN you yourself control more fully; Perhaps check out SoftEther and/or OpenVPN ? ā¦ PS: SoftEther kicks ass and does both openvpn and l2tp compatility!!
Free software capable of acting as reverse-proxy such as NGINX , HAProxy or TrƦfik may perhaps also be an option. And the best and easiest one IMO. Iāve previously used NGINX to do āload-balanceā between 3-4 small YaCy instances. And itās rel. easy to setup.
(Thereās also services like CloudFlare, but that would just be very silly and waste of money on a personal YaCy instance )
Besides those options, a so called Mesh-Networking such as B.A.T.M.A.N + OpenMesh could perhaps be used. But that would relies on a coherent and agreed-upon setup between multiple participants. And would likely be quite unstable, an unimaginable pain to coordinate, and messy to maintain. TLS certificates couldnāt work on it AFAIKā¦ And in any case one or more participants would need be willing to serving as āgatewayā regardless.