Wireguard Wireguard passthru

juanantonio · Jul 1, 2022

ZebMcKayhan said:
in my opinion, wg21 rules (dont really know what wgm is doing about these) could probably be deleted. both of them.

as you have a passthru rule, it would make wg11 rule 2 obsolete (it also looks like its ips are missing the last .1, dont know how the system react to this), as this is already included in the passthru rule.

so, hopefully at the end you should have your passthru rule and a single WAN rule (#6) to take care of routing LAN to Server. Nice and neat!

But as you dont have any rules for LAN ips to use VPN I dont really understand why your routing rule is at all needed... but as long as it works and its needed, just leave it there.

You were right, I' ve done exactly what you said and I have access from my remote wg client both to LAN and to Inet through my VPN supplier, as I wanted.

Bash:

E:Option ==> peer wg11 rule


ID  Peer  Interface  Source  Destination   Description
6   wg11  WAN        Any     10.50.1.1/24  LAN to WG Server

        WireGuard® ACTIVE Peer Status: Clients 1, Servers 1

E:Option ==> peer wg21 rule

        No RPDB Selective Routing/Passthru rules for wg21


        WireGuard® ACTIVE Peer Status: Clients 1, Servers 1

Thanks a lot!

Edit: Sadly, I had to add the rules I previously deleted, because my wg clients had no connectivity out of the local network.

So, in the end, the rules rest as follows. I include them in case someone else can need help:

Code:

E:Option ==> peer wg11 rule

ID  Peer  Interface  Source      Destination   Description
6   wg11  WAN        Any         10.50.1.1/24  LAN to WG Server

        WireGuard® ACTIVE Peer Status: Clients 1, Servers 1

E:Option ==> peer wg21 rule

ID  Peer  Interface  Source          Destination     Description
4   wg21  WAN        192.168.1.1/24  10.50.1.1/24    WG Server to LAN
5   wg21  WAN        10.50.1.1/24    192.168.1.1/24  WG Server to LAN

        WireGuard® ACTIVE Peer Status: Clients 1, Servers 1

E:Option ==> import

***********Some stuff about server and clients.... **********

Server  Client  Passthru
wg21    wg11    10.50.1.1/24

        WireGuard® ACTIVE Peer Status: Clients 1, Servers 1

Thread starter	Title	Forum	Replies	Date
P	Make sure "git clone" does not go through WireGuard VPN when it is applied to whole network	Asuswrt-Merlin AddOns	0	Mar 21, 2024
W	Wireguard AX86U wireguard connection dead after upgrade firmware 388.6.0 or 388.6.2	Asuswrt-Merlin AddOns	0	Mar 13, 2024
P	Skynet Skynet logs of VPN(wireguard) clients	Asuswrt-Merlin AddOns	14	Jan 20, 2024
A	Splitting Wireguard between Router and client	Asuswrt-Merlin AddOns	53	Jan 8, 2024
M	Skynet Skynet Slow down with Wireguard server	Asuswrt-Merlin AddOns	2	Dec 15, 2023
P	WireGuard manual IPSet configuration	Asuswrt-Merlin AddOns	3	Oct 11, 2023
	Diversion Diversion not working w/VPN Director/Merlin 3004.388.4/Asus RT-AX88U/Wireguard	Asuswrt-Merlin AddOns	3	Sep 23, 2023
	amtm "***ERROR: WireGuard 'client' doesn't have a LOCAL IP Address! - try 'peer wg11 ip=xxx.xxx.xxx.xxx/32'?" for PiVPN config but not mullvad VPN	Asuswrt-Merlin AddOns	1	Aug 8, 2023
	spdMerlin WireGuard Client Support	Asuswrt-Merlin AddOns	3	Jun 21, 2023

Search

Search

Wireguard Wireguard passthru

juanantonio

Regular Contributor

Similar threads

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Members online