Questions tagged [wireguard]

257 questions
16
votes
2 answers

How to see debug logs for WireGuard (e.g. to see authentication attempts)

I've successfully set up a WireGuard VPN on my Debian 10 server. It was incredibly straight forward compared to the setup of OpenVPN, and it's working fine. However, I can't see any logs beyond those from journalctl -u wg-quick@wg0.service. I'd like…
artfulrobot
  • 2,627
  • 11
  • 30
  • 56
8
votes
3 answers

WireGuard user authentication

I've read the WireGuard specification, and it looks like WireGuard doesn't natively support any kind of user authentication (e.g. LDAP or something like that). Any client which has the server's public key, and whose IP address is whitelisted in the…
Aleksandar Pesic
  • 251
  • 2
  • 4
  • 9
8
votes
2 answers

Wireguard not completing handshake

I have two Debian GNU/Linux systems (bullseye/sid), both running wireguard on port 23456, both behind NAT. Both run a kernel version > 5.6 (wireguard mainlined). System A is the server, and it dynamically updates a dedicated "A record" in the…
Lucio Crusca
  • 330
  • 2
  • 10
  • 31
7
votes
3 answers

Cannot setup WireGuard VPN

My goal is to create a VPN so Clients have static IP addresses. Clients are able to communicate with each other and the server, Clients can reach global Internet through the VPN. Also, I'd like to setup DNS and private domain names (working with…
AivanF.
  • 233
  • 1
  • 3
  • 10
6
votes
2 answers

Wireguard VPN can't access internet and LAN

I have a server running Ubuntu 20.04 and wireguard 1.0.20200513-1~20.04.2. I installed the wireguard app on my phone (Android Samsung S20+) and disabled WIFI and connected to 4G. When the VPN is active I can access the server and nothing else on my…
5
votes
2 answers

Is it possible to disable default gateway in WireGuard VPN client?

Is it possible to disable default gateway in WireGuard VPN client? I used "allowed IP" to my own subnet, but still whenever I try to connect to VPN server, the client sets default gateway to the WireGuard server IP. Any other way to disable default…
Farhan
  • 4,210
  • 9
  • 47
  • 76
5
votes
1 answer

Broadcast UPnP over WireGuard

I have few devices: VDS, custom NAS on linux, laptop PC. All of that successfully connected to one local subnetwork 10.1.1.0/24 Server configuration: [Interface] Address = 10.1.1.1/24 ListenPort = 5182 PrivateKey = *** [Peer] PublicKey =…
Gedweb
  • 151
  • 1
  • 6
5
votes
1 answer

Wireguard - How to only tunnel some of the traffic

Is it possible to set up the Wireguard server so that only a list of ips [A, B, C,...] is tunneled via Wireguard - while the rest of the traffic is ignored and goes through the non-Wireguard interface? Said differently, I'm trying to give access to…
Symeof
  • 151
  • 1
  • 2
5
votes
1 answer

Wiregurard override wg0.conf

I have successfully installed Wireguard on Debian Buster. Now I wanted to configure IPv6 afterwards. I have done that. But the settings inside the [Peer]-Section of wg0.conf do not seem to be persistent. systemctl stop wg-quick@wg0.service nano…
Gill-Bates
  • 489
  • 5
  • 17
4
votes
2 answers

Make wireguard listen on multiple port

It there a way to make wireguar listen to multiple port ? Like listenning on 80,53,and 4444. I'm looking to achieve this without running multiple wire guard separate interface, to prevent having to create different subnet for the same thing. The…
Remy Grandin
  • 198
  • 2
  • 8
4
votes
3 answers

Ubuntu 18.04.1, cannot add PPA wireguard/ubuntu/wireguard

I'm trying to install WireGurad on my fresh vanilla Ubuntu 18.04.1 machine, by following the instructions from WireGuard website. But when I try to execute very first command: sudo add-apt-repository ppa:wireguard/wireguard I'm getting the…
Aleksandar Pesic
  • 251
  • 2
  • 4
  • 9
4
votes
1 answer

Redsocks not working with Wireguard, but works with OpenVPN

Summary I use a VPN to route all of my traffic through. Until recently, I used OpenVPN, but then switched to Wireguard. Unfortunately, this broke my redsocks setup, and I can't figure out why. I'm using redsocks because I'm using a command-line…
Patrick
  • 65
  • 7
4
votes
0 answers

Enable IPv6 IP forwarding on Windows by default

I'm running Wireguard on a Windows server, connected to multiple peers. Peer A <-> Server <-> Peer B In order to allow peers to ping each other (Peer A wants to reach Peer B), IP routing/forwarding needs to be enabled. This can be achieved quite…
Adrian
  • 41
  • 2
4
votes
0 answers

Need help troubleshooting periodic wireguard packet loss

I have a VPN server with Wireguard and OpenVPN on it. Most of my tunnels are OpenVPN, but I am working on transitioning over to Wireguard. The Wireguard server is at a main location, and I have 3 clients the same remote site. Two have a Wireguard…
Zoredache
  • 128,755
  • 40
  • 271
  • 413
3
votes
1 answer

Wireguard: packets returning from server are dropped

I set up wireguard by now on one server (with NAT enabled) and on a client (ubuntu). When I don't route all the traffic via the tunnel everything works. As soon as I start routing all the traffic through the tunnel as described in…
1
2 3
17 18