Print Page - [SOLVED] Wireguard-go silent and no listen on fresh install

Title: [SOLVED] Wireguard-go silent and no listen on fresh install
Post by: khajiit on May 06, 2022, 10:21:04 PM

Hello!
I'm trying to link two OPNsenses, both are behind NAT.

fresh install
updated
only basic wan/lan configure

On gateways portforwarding working great: I can see packets with `tcpdump` inside OPNsense when attaching to console and doing `netcat` from other gateway.
`wg0` interface gets it's address and routes are added to system.

But `netstat -l4n -p udp` shows that noone is listening choosen port (I've tried empty, default 51820, 52000, 7000)

Running `LOG_LEVEL=debug wireguard-go <path to wg0>` also gives no clue.

Package versions are:
wireguard-go 0.0.20220316_1,1
wireguard-tools 1.0.20210914_1

Followed this guide https://docs.opnsense.org/manual/how-tos/wireguard-client.html (https://docs.opnsense.org/manual/how-tos/wireguard-client.html)

Title: Re: [SOLVED] Wireguard-go silent and no listen on fresh install
Post by: khajiit on May 10, 2022, 12:05:24 AM

First of all, rather than in linux,nor kmod nor go WILL NOT SHOWN AS LISTENiNG.
Wireguard debugging is bad as hell by design, and this makes it much harder.

Second, incoming traffic must be EXPLICITLY enabled not only on WAN but on WireGuard(Group) too.

OPNsense Forum

English Forums => Virtual private networks => Topic started by: khajiit on May 06, 2022, 10:21:04 PM