OPNsense Forum
Archive => 20.1 Legacy Series => Topic started by: skywalker007 on February 16, 2020, 05:00:44 pm
-
After long time pushing this out, I have started to migrate my road warriors over to WireGuard.
Quick question on the server side config:
The docu says:
(https://uploads.tapatalk-cdn.com/20200216/34b499ba5c1d621d8a72455e98fa6a0b.jpg)
Is that still necessary? The NAT setup also offers me the automatically created WireGuard Interface. Why can’t I use that instead of doing a new assignment?
Thanks!
-
Can you post a screenshot what exactly you mean?
-
Like this:
(https://uploads.tapatalk-cdn.com/20200218/4564c06395d2246bb1583d5f38912642.jpg)
WG0 is a manually assigned Interface according to the docu. The other one is auto created I guess. Does it matter which one to use? Why would I need to manually assign an interface anyway?
Thanks a lot!
-
You only need to assign If you so policy routing. If you just want wg Client reach the internet, unassign and use WireGuard net
-
thanks a lot, that answers the question. Might be worth adapting the documentation.
-
I think it's clearly stated that assignment is optional for policy based routing?
-
Is that what you mean by “filter some streams out of it”? Ok. I read the chapter differently. For me it sounds like “ in any case where you want to route all traffic through vpn, assign an Interface manually.” Sorry for being picky on this, but I just want to improve this with my feedback.
-
No, thats good, be picky :)
Indeed, it's some time ago when I wrote it down, maybe I'm wrong (was).
So can you verify it works also without assigning?
-
Thanks. I will.
-
No, thats good, be picky :)
Indeed, it's some time ago when I wrote it down, maybe I'm wrong (was).
So can you verify it works also without assigning?
It does work well without manual interface assignment.