Hi,
do i unterstand it right, that the Wireguard (Group) rules are for all instances (wg1, wg2, ...) and interface rules is for the related instance wg1, wg2?
thx
Correct. You can use one or the other or both, depending on your use case.
Wireguard (Group) is mostly for simple setups since you can use that without having to assig the wg interface(s).
Cheers
Maurice
Hi,
Can you please help what I did wrong.
local network 10.0
remote 7.0
WireGuard Site-to-Site (https://docs.opnsense.org/manual/how-tos/wireguard-s2s.html)
Aftter that i have connected tunnel but I have access only to opnsense Ip from both sides.
As I understand something wrong with wireguard firewall rule? Or what screen do you need more?
(https://i.postimg.cc/KKfjV7pD/WG-rule.png) (https://postimg.cc/KKfjV7pD)
Both rules mopstly are the same. 1st rule made just for checking
Ping from 10.0 to remote opnsense succes but for other remote machines not.