I've configured WireGuard server as per road warrior manual.
I have clients connecting to the server, can see them in OPNsense, handshakes etc.
but I am not able to access anything on local firewall network nor browse internet when tunel
is established.
See my firewall rule for WireGuard below, as you can see I tried with IP address as well as WireGuard address
as a source in the rule - no difference.
I checked loads of post all over but no solution works, can anyone advise?
Check firewall logs if there is traffic blocked and if your WG allow any rule is hit.
If there is nothin in FW logs, something other is wrong (config?).
...e.g. check allowed nets in client config.
Only seeing the attached in FW logs on WG interface but still no access to local network...
What does this mean?
And this is client's config
[Interface]
PrivateKey = jhsfjshjfhd=
Address = 10.0.0.3/32
[Peer]
PublicKey = asjhfjashfhsjk=
AllowedIPs = 0.0.0.0/0, ::/0
Endpoint = MyPublicIP:51820
PersistentKeepalive = 25
OMG I am so sorry for wasting your time.
I have just realised that allowed network / IP needs to be added to the client configuration.
Added the below and all works, LAN access, Internet access, all good :)
AllowedIPs = 0.0.0.0/0, 192.168.1.0/24
I do not completely understand:
In your post allowd IPs is set to any (0.0.0.0/0)... so adding your LAN subnet additionally did the trick?
This is weird, because the LAN subnet is "part" of 0.0.0.0/0 which should work fine so far.
Is there no DNS server set in client config?
Yes there is DNS set up in the client config but before adding 192.168.1.0/24 network
I wasn't able to access anything at all on LAN, not even OPNsense web interface.