Questions tagged [wireguard]
257 questions
1
vote
1 answer
Wireguard VPN + OpenVPN VPN leads to DNS resolution failure for the OpenVPN tunnel
I have two VPNs - one via wireguard for my general internet traffic, one via openvpn (for work). DNS resolution over openvpn is only partly working.
With both tunnels up:
A) systemd-resolve needs to be "taught" to use tun0. (This was working…
fridgepolice
- 111
- 2
1
vote
0 answers
Why does "ip -4 route add 31.1.1.1/32 dev wg0" break EC2 networking with WireGuard
Edit: Whilst explaining, I finally figured out the error in my logic. The test ip I was using to route to, is the same IP I was connecting with. Thus messing up my connection the moment I changed routing.
This might be simple, or really complex. I…
Eloque
- 115
- 4
1
vote
0 answers
How to make outbound requests through wireguard while provide web services on the same server?
I want to make outbound requests through wireguard while provide web services on the same server. It means if there is a request reach ens3 , the response will return the same way. But if I make a request on the server, it will through…
maP1E bluE
- 151
- 7
0
votes
1 answer
Is it possible to create a 'site-to-site' VPN using an iOS device?
I am trying to configure a VPN that would allow remote access to the LAN of an iOS client from the VPN server, as a remote-access solution not requiring any dedicated hardware or setup on the client's network.
Using OpenVPN or WireGuard, I can…
Tugzrida
- 143
- 5
0
votes
0 answers
SSH-key based authentication for VPN server
I would like to set up a VPN-Server for our users that allows them to authenticate with every key in ~/.ssh/authorized_keys.
I know that wireguard uses SSH-keys as well, but how can I tell it to accept the user's authorized_keys? Querying all…
Hoeze
- 101
- 3
0
votes
1 answer
Why doesn't this Wireguard route work?
I've set up three Wireguard nodes – a, b and c (Vagrantfile below). Both b and c connect to a and are able to ping a over the Wireguard tunnel. But b and c aren't able to ping each other – why?
Vagrant.configure("2") do |config|
[
{
…
Al Klimov
- 88
- 8
0
votes
1 answer
Wireguard Access between clients - UFW block
there is a problem in wireguard setup regarding to UFW.
CLIENT A -------- SERVER -------- CLIENT B
10.10.10.5 10.10.10.1 10.10.10.11
I want to access SSH from Client A to Client B, but UFW block this with the following message.
On…
Jan
- 1
- 1
- 1
0
votes
2 answers
Only able to connect to Wireguard peer after I ping the server
So I have 1 computer set up as a server and all the others as peers.
Here's the server config:
[Interface]
Address = 10.0.0.1/16
SaveConfig = false
PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o enp6s0 -j…
Jelle De Loecker
- 1,055
- 6
- 16
- 29
0
votes
1 answer
Iptables killswitch is blocking .local dns lookups
I have added ! -d 192.168.0.0/16 and ! -d fc00::/7 to Wireguard's killswitch example (see man wg-quick EXAMPLES):
PostUp = iptables -I OUTPUT ! -d 192.168.0.0/16 ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j…
jcalfee314
- 259
- 1
- 5
- 14
0
votes
1 answer
Converting IPtables rules into FirewallD Rules (Killswitch for Wireguard)
According to Mullvad's tutorial, to enable the killswitch for Wireguard involves the following:
A: Add the following lines under the [Interface] section of the WireGuard configuration files found in /etc/wireguard/ :
PostUp = iptables -I OUTPUT !…
tutudid
- 63
- 1
- 9
0
votes
1 answer
Running Wireguard disables SSH access to the machine
I have a machine C which I can SSH into from my machine B. But when C uses Wireguard to connect to the internet through machine A, I no longer can SSH into it from B.
What do I do?
HappyFace
- 121
- 1
- 9
0
votes
1 answer
Wireguard VPN Outbound and Inbound
I am trying to setup a Wireguard tunnel so that A uses the IP of B for outbound and inbound traffic (like a proxy, not a std VPN config). Both boxes are Ubuntu 16.04.
A is eth0, behind a router with NAT and on DMZ, with IP A
B has two public IPs: a…
Gaia
- 1,777
- 4
- 32
- 58
0
votes
0 answers
Nexthop has invalid gateway when doing IP forwarding and address translation
So let's say I'm a user in PC1, I have two ubuntu servers in two countries (VPS1 and VPS2) VPS1 is a WireGuard server and VPS2 is a OpenVPN server.
I want to do something like this:
PC1 ---> VPS1 ---> VPS2 ----> Internet
I'm following this…
mgh
- 101
0
votes
0 answers
Setup vpn server and client on same device wireguard
I am attempting to configure a vpn on my machine without a router or home network (wireles connection). Is it possible to solely utilize one device and configure two peers (client/server) then route all network traffic through that tunnel?
I have…
Darnoc Eloc
- 1
- 2
0
votes
1 answer
How do I route all public traffic through Wireguard but not local traffic?
I know there's a series of CIDRs that I can use to cover all public CIDRs and leave out local CIDRs, but I cannot find this anywhere and I don't recall where I found it a couple of years ago when previously solving this problem.
My goal is to have…
cmjordan
- 1
- 3