Messages

1

Virtual private networks / Re: Restart Wireguard after WAN Interface gets ready

« on: September 09, 2023, 01:46:07 pm »

i monitore wireguard now via monit, works fine for me

waiting for "vpn hook" ;-)

thx

2

23.7 Legacy Series / Re: How to restart Wireguard VPN Service (Kernel Modul) via commandline?

« on: September 08, 2023, 02:06:55 pm »

thx a lot and sorry for not finding it

3

23.7 Legacy Series / Re: How to restart Wireguard VPN Service (Kernel Modul) via commandline?

« on: September 08, 2023, 01:31:26 pm »

nobody?

/usr/local/opnsense/scripts/Wireguard/wg-service-control.php stop

does also not work

4

Virtual private networks / Re: Restart Wireguard after WAN Interface gets ready

« on: September 06, 2023, 11:12:34 pm »

/usr/local/sbin/configctl -dq wireguard stop

does not stop my wireguard service

/usr/local/sbin/configctl -dq wireguard restart

does not restart

also do not get an error message?

5

23.7 Legacy Series / How to restart Wireguard VPN Service (Kernel Modul) via commandline?

« on: September 06, 2023, 10:52:07 pm »

How to restart Wireguard VPN Service via commandline

/usr/local/sbin/configctl wireguard stop/start

does not do the job

6

23.7 Legacy Series / Re: wireguard at start up

« on: September 04, 2023, 07:26:32 pm »

thanks a lot for your input.

Looking good for now, that the remote site initiates the vpn connection!!

thx

7

23.7 Legacy Series / Re: wireguard at start up

« on: September 04, 2023, 07:09:16 pm »

ok, good idea to restart, maybe i can use monit as well

8

23.7 Legacy Series / Re: wireguard at start up

« on: September 04, 2023, 07:08:28 pm »

If one end has a fixed IP address let the other one initiate the connection. You can leave the peer IP address field empty or set to 0.0.0.0 - don't exactly remember which. If both ends have dynamic addresses, bad luck. I don't work with anything but fixed for site 2 site VPNs.

The problem is that WG starts before your uplink and DNS is ready ...

ok, i'll try this. The central Opnsense has an fixed address, the S2S peers are "FritzBox" i'll put a persistant keepalive to conf

Let's see if this works

9

23.7 Legacy Series / Re: wireguard at start up

« on: September 04, 2023, 06:47:31 pm »

but peer has an dynamic ipadress

10

23.7 Legacy Series / wireguard at start up

« on: September 04, 2023, 06:36:29 pm »

after reboot of my opnsense 23.7.3, wireguard does not come up, it shows green in dashboard but is not working

log shows following entry:
/usr/local/opnsense/scripts/Wireguard/wg-service-control.php: The command '/usr/bin/wg setconf 'wg0' '/usr/local/etc/wireguard/wg0.conf'' returned exit code '1', the output was 'Name does not resolve: `xxxyyy.com:53956' Configuration parsing error'

manually restarting wireguard helps and wireguard is running again.
I assume it is a timeing problem, because wireguard starts and at this point i do not have an official IP adress on WAN interface, because DHCP takes some time.

how can i solve this issue?

11

23.7 Legacy Series / Re: after upgrade 23.7.2 - Wireguard - OpenVPN Problem

« on: August 27, 2023, 11:10:39 am »

I have the kernel modul and it worked until upgrade to 23.7.2
23.7.1 everything was fine

12

23.7 Legacy Series / after upgrade 23.7.2 - Wireguard - OpenVPN Problem

« on: August 26, 2023, 05:26:58 am »

After upgrade to 23.7.2 Wireguard is not working anymore (wg0 interface missing)

I found the problem, because i configured the wireguard tunnel network also as local network in openvpn, in order to be able to route traffic from wireguard to openvpn and vice versa.
this worked perfect until 23.7.2

With 23.7.2 it doesen't work anymore until i
1. stop openvpn
2. restart wireguard
3. restart openvpn
then it is working again.

any Ideas?

13

Virtual private networks / Question Wireguard Firewall rules

« on: August 06, 2023, 03:41:13 pm »

Hi,

do i unterstand it right, that the Wireguard (Group) rules are for all instances (wg1, wg2, ...) and interface rules is for the related instance wg1, wg2?

thx

14

23.1 Legacy Series / Re: Wireguard

« on: January 27, 2023, 06:17:40 pm »

i only installed os-wireguard plugin and then upgraded to 23.1.
Everything seams to work fine, but services monitor shows red for wireguard-go

15

20.7 Legacy Series / Re: [SOLVED] unbound plugin not available after upgrade- not found in repos

« on: January 12, 2022, 04:08:34 pm »

hard to accept the red entry at the top of plugin List :-)