OPNsense Forum

English Forums => Virtual private networks => Topic started by: Imnot A Robot on December 01, 2021, 03:04:14 am

Title: Wireguard-go multiple endpoints question
Post by: Imnot A Robot on December 01, 2021, 03:04:14 am

Using Wireguard-go as roadwarrior is suiting my needs well as a single iPhone VPN. Problems arise when I try to add more endpoints because the configurations don't work as I imagined -- basically I thought I just add more endpoints and reuse the original Local Config, Public Key, and Tunnel Address.

In a nutshell, for each additional device, do I reuse the the local config's (Public Key, Tunnel Address) and just add additional endpoints or do I need to create completely new Local Config + Tunnel pairs for each additional device?


Thanks,
Chris

Title: Re: Wireguard-go multiple endpoints question
Post by: allebone on December 01, 2021, 04:39:31 am

No you only need one local config. You will need to check you are not missing steps when adding additional endpoints or misconfiguring.

Title: Wireguard-go multiple endpoints question
Post by: Greelan on December 01, 2021, 10:27:03 am

Remember to use unique /32s for the other endpoints (within the tunnel /24) and to add them to the local config. You might also need to restart WG after doing so

Title: Re: Wireguard-go multiple endpoints question
Post by: Imnot A Robot on December 01, 2021, 11:00:50 pm

@Greelan,

Yet again! I highly appreciate your superb insight into solving my humble attempts to fully leverage this wonderful platform.

I try to be concise in my inquiries, but you somehow just know what little bit of information I need to get me over the top, i.e, the "unique /32s".

YOU ARE THE MAN!


Chris