Hi, all
My OpenVPN sever and OpenVPN connection to VPN provider work fine in 25.1. After upgrade to 25.7,
It seems VPN connection need a certificate from VPN provider now. Is this true?
Now I tried to connect to VPN provider through wireguard but never success yet. Here is the
configuration, hope someone correct what I do wrong.
1. create wireguard instance
Name: Surfshark
Public key: *****
Private key: *****
Listen port: 51820
Tunnel address: 10.14.0.2/16
Peer: SurfsharkJP
disable route: checked
PS: I am confused, why I need a wireguard server occupy a listen port for just establish VPN client connection
2. create wireguard peer
Name: SurfsharkJP
Public key: *****
Allow IP: <my vlan subnet>
End point address: *****
End point port: *****
Instances: Surfshark
3. check wireguard status
ok wg0 interface Surfshark 51820
ok wg0 peer SurfsharkJP ***** 41s 202k 61k
4. assign interface
Surfshark wg0 enable
5. NAT rule
Surfshark any * * * Interface address * NO
6. Surfshark rule
pass IPv4 * * * * * * *
7. vlan rule
pass IPv4 * VLAN net * * * GW_Surfshark *
8. gateway
GW_Surfshark Surfshark IPv4 255 10.14.0.1
With above configuration, VLAN net can not resolve DNS,
I can see 10.14.0.2 connect to 8.8.8.8 udp 53 passed but never receive any ip address.
Thanks for your help,
Thanks Bob.
After changed wireguard peer allow ip setting to 0.0.0.0/0, connection to VPN
provider works fine now.
I got a lot to learn about wireguard VPN.