Text only | Text with Images

OPNsense Forum

English Forums => Virtual private networks => Topic started by: sigmelu on May 26, 2024, 06:40:00 PM

Title: WireGuard Selective Routing to External VPN Endpoint
Post by: sigmelu on May 26, 2024, 06:40:00 PM
Hello,
I have a wireguard server set on a debian linode VPS and I want to connect my DEC700 to it in order to apply over one host behind DEC700 (hostname: win, IP: 172.27.72.10). I have followed https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html (https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html) and nothing happens, on the specific host I still have my ISP IP, seems to be a routing problem.
OPNsense router details: (https://i.postimg.cc/25sGxM86/01.png)
My LAN subnet is 172.27.72.0/25 and My WAN public IP is provided by ISP via PPPOE.

I will try to show here every step I followed, hoping somebody will point me into the right direction:
VPN ‣ WireGuard ‣ Peers
(https://i.postimg.cc/brJ7tdyb/02.jpg)

VPN ‣ WireGuard ‣ Instances
(https://i.postimg.cc/xCymzTx0/03.jpg)

VPN ‣ WireGuard ‣ General
(https://i.postimg.cc/P5R9gdMr/04.png)

Interfaces ‣ Assignments
(https://i.postimg.cc/Z550fxfz/05.jpg)

System ‣ Gateways ‣ Configuration
(https://i.postimg.cc/k57sYZ0X/06.png)
(https://i.postimg.cc/xdkvZ2sQ/07.png)

Firewall ‣ Aliases
(https://i.postimg.cc/3wBTzsWL/08.png)

Firewall ‣ Rules ‣ linode2
(https://i.postimg.cc/dQVYx2gJ/09.jpg)

Firewall ‣ Rules ‣ Floating
(https://i.postimg.cc/VYz0kTCg/10.jpg)

Firewall ‣ NAT ‣ Outbound
(https://i.postimg.cc/bpQdGttL/11.jpg)

Wireguard OPNsense client has 10.10.5.8 and it is connected to wireguard server (linode), I can see it very clear,  there are 2 peers, my OPNsenseDEC700 (10.10.5.8 ) and a phone(10.10.5.2), both connected to this wireguard server. On the phone I have linode public IP and work as expected, on my win host unfortunately not.

(https://i.postimg.cc/rpCxHX3Z/12.jpg)

DEC700 Dashboard
(https://i.postimg.cc/d3t8cHrR/14.jpg)

I searched over the internet but I wasn't able to get anything clear to solve my issue.
I would appreciate if somebody will explain what I am doing wrong.
Many thanks in advance!

LE: I figured how to do it but some steps here are not necessary, the tutorial is not good.
I can explain if someone would be interested.
Title: Re: WireGuard Selective Routing to External VPN Endpoint
Post by: cafec0ffee on June 11, 2024, 04:31:32 PM
QuoteI can explain if someone would be interested.

very interesting
I tried a lot of manuals but still couldn't launch selective routing
Title: Re: WireGuard Selective Routing to External VPN Endpoint
Post by: sigmelu on June 23, 2024, 10:51:38 AM
https://www.youtube.com/watch?v=9B4FW5pf2wA

Best tutorial, very well explained.
Text only | Text with Images