Highest Voted 'wireguard' Questions - Server Fault Stack Exchange

1

vote

1 answer

How to forward/route packets via wireguard overlay network?

My question is related to basics in network routing and iptables, and is probably due to my lack of understanding on how I should set this up. I have established an overlay network between hosts using wireguard, where one is behind a Router/NAT. In…

asked Oct 10 '20 at 20:45

Overbryd

433
6
10

1

vote

0 answers

Can't get Wireguard running on Freebsd to ping

I have a Freebsd installation running VirtualBox on my local LAN behind NAT trying to connect out to a Scaleway VPS running Ubuntu 20.04. Using Debian 10 the VPN connects just find and I can ping all interfaces and ssh between machines. But using…

freebsd wireguard

asked Sep 29 '20 at 13:58

jradxl

171
1
1
5

1

vote

1 answer

In WireGuard on a sending peer, how is packet sent from the `wg0` interface to the UDP port?

I'm trying to understand, once a packet reaches the WireGuard interface (wg0) how is it sent to the UDP port from where it can be sent to the receiving peer. I was reading the WireGuard whitepaper and it says The interface itself has a private key…

networking wireguard packets

asked Sep 08 '20 at 18:13

dsinecos

111
1

1

vote

1 answer

Dockerized Wireguard with killswitch doesn't allow the local access of a service sharing the network

I have two containers linuxserver/wireguard and X on Ubuntu (server) 20.04. X has a WebUI on port q that I would like to access via my local network (192.168.178.0/24 - fritzbox). They are configured that X uses the same 'network' as…

ubuntu iptables routing docker wireguard

asked Aug 05 '20 at 01:42

JustAQuestion

11
1
2

1

vote

1 answer

Internet on EC2 based Wireguard not working

Summary: I have created a Wireguard VPN server on an AWS EC2 instance. From the VPN client I can connect to the VPN correctly and ping the VPN server. When attempting to access the internet from the client I am unable to get any responses from…

ubuntu networking amazon-ec2 vpn wireguard

asked Jul 12 '20 at 09:20

Keagan Jarvis

21
3

1

vote

1 answer

Unable to Configure WireGuard to Use Secondary IP Address Instead of Main IP Address of the Server

The Setup The main ethernet interface of my server is enp8s0, has one public IP address (116.202.221.254—server's main IP address), and here's how it is set up. # ip addr show enp8s0 2: enp8s0: mtu 1500 qdisc…

networking iptables vpn iproute2 wireguard

asked Apr 22 '20 at 11:30

its_me

225
1
7
23

1

vote

1 answer

Wireguard VPN + OpenVPN VPN leads to DNS resolution failure for the OpenVPN tunnel

I have two VPNs - one via wireguard for my general internet traffic, one via openvpn (for work). DNS resolution over openvpn is only partly working. With both tunnels up: A) systemd-resolve needs to be "taught" to use tun0. (This was working…

openvpn systemd wireguard

asked Apr 18 '20 at 13:20

fridgepolice

111
2

1

vote

0 answers

Why does "ip -4 route add 31.1.1.1/32 dev wg0" break EC2 networking with WireGuard

Edit: Whilst explaining, I finally figured out the error in my logic. The test ip I was using to route to, is the same IP I was connecting with. Thus messing up my connection the moment I changed routing. This might be simple, or really complex. I…

amazon-ec2 vpn routing wireguard

asked Apr 01 '20 at 20:01

Eloque

115
4

1

vote

0 answers

How to make outbound requests through wireguard while provide web services on the same server?

I want to make outbound requests through wireguard while provide web services on the same server. It means if there is a request reach ens3 , the response will return the same way. But if I make a request on the server, it will through…

networking iptables ip wireguard

asked Mar 23 '20 at 07:31

maP1E bluE

163
8

0

votes

1 answer

Is it possible to create a 'site-to-site' VPN using an iOS device?

I am trying to configure a VPN that would allow remote access to the LAN of an iOS client from the VPN server, as a remote-access solution not requiring any dedicated hardware or setup on the client's network. Using OpenVPN or WireGuard, I can…

vpn openvpn apple-ios wireguard

asked Jan 02 '20 at 12:01

Tugzrida

143
5

0

votes

0 answers

SSH-key based authentication for VPN server

I would like to set up a VPN-Server for our users that allows them to authenticate with every key in ~/.ssh/authorized_keys. I know that wireguard uses SSH-keys as well, but how can I tell it to accept the user's authorized_keys? Querying all…

vpn openvpn ssh-keys wireguard

asked Dec 25 '19 at 15:11

Hoeze

101
3

0

votes

1 answer

Why doesn't this Wireguard route work?

I've set up three Wireguard nodes – a, b and c (Vagrantfile below). Both b and c connect to a and are able to ping a over the Wireguard tunnel. But b and c aren't able to ping each other – why? Vagrant.configure("2") do |config| [ { …

router wireguard

asked Oct 07 '19 at 14:36

Al Klimov

100
9

0

votes

1 answer

Wireguard Access between clients - UFW block

there is a problem in wireguard setup regarding to UFW. CLIENT A -------- SERVER -------- CLIENT B 10.10.10.5 10.10.10.1 10.10.10.11 I want to access SSH from Client A to Client B, but UFW block this with the following message. On…

vpn ufw wireguard

asked Sep 24 '19 at 16:43

Jan

1
1
1

0

votes

2 answers

Only able to connect to Wireguard peer after I ping the server

So I have 1 computer set up as a server and all the others as peers. Here's the server config: [Interface] Address = 10.0.0.1/16 SaveConfig = false PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o enp6s0 -j…

vpn ubuntu-18.04 wireguard

asked Sep 24 '19 at 10:45

Jelle De Loecker

1,094
6
17
30

0

votes

1 answer

Iptables killswitch is blocking .local dns lookups

I have added ! -d 192.168.0.0/16 and ! -d fc00::/7 to Wireguard's killswitch example (see man wg-quick EXAMPLES): PostUp = iptables -I OUTPUT ! -d 192.168.0.0/16 ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j…

iptables dhcp wireguard

asked Aug 17 '19 at 21:11

jcalfee314

269
1
6
14

Questions tagged [wireguard]