Hi,
I am running OPNsense as transparent filter in bridge mode with interfaces WAN, LAN, OPT1, OPT2. The bridge has the IPv4 address 192.168.0.2/24.
The only thing left to setup is WireGuard and I already had a working setup in non-bridged mode. Usually the WireGuard VPN is configured as 10.0.0.1/24 with an endpoint at 10.0.0.2/24. In bridged mode I can not reach other devices in the network, ie. I can ping only IP addresses of the OPNsense firewall, e.g. 192.168.0.2 and 10.0.0.1.
What I have tried so far:
- configure OPNsense as transparent filter with interface BRIDGE and assign 192.168.0.2/24, add WireGuard interface wg0 and assign it to VPN on 10.0.0.1
- add VPN interface to bridge, such that it contains WAN, LAN, OPT1, OPT2, and VPN
- configure WireGuard on 192.168.0.101/24 and the endpoint on 192.168.0.102/24
- assign WireGuard wg0 to "_VPN" and create a second bridge VPN with "_VPN" only member
- add new bridge "VPN" to BRIDGE
What am I missing here to have WireGuard running in bridged mode?
thanks,
Albert
meanwhile, I upgraded OPNsense to 20.7 and the WireGuard problem still exists.
This thread can be moved to "20.7 Production Series"
Never tried this, but I think it could be problematic when the L3 interface belongs to a bridge