I have 2 opnsense configured in HA mode and a virtual IP configured in CARP for wan access (as per the manual for HA configuration).
From what I understand, the wireguard vpn is not able to establish itself if the classic nat from wan to virtual IP is used because the vpn requires the use of the real ip of the interface to create the handshake.
The only workaround would be to redirect traffic for that udp port to the real ip but I don't understand how to use this solution in Ha mode (firewall rules are synchro between both fw)
Is there a guide on this?
I tried searching but couldn't find anything.
Thanks
Inviato dal mio SM-A415F utilizzando Tapatalk
https://forum.opnsense.org/index.php?topic=20201.msg93517#msg93517
Looks like its not working yet.