Show Posts
1
Virtual private networks / Connecting to SIP server on the internet from WireGuard Road Warrior Client
« on: February 12, 2021, 01:42:48 pm »
Hi everyone, I am new to OPNSense and used to consider my self well versed in networking. Until now.
I have OPNsense 21.1.1 with Wureguard server activated. I have followed the guide at https://docs.opnsense.org/manual/how-tos/wireguard-client.html
I connect to Wireguard from outside home as always online VPN. I am able to access to my LAN and get to the internet via the firewall without any issues.
I have SIP account on my phone and have no connection issues when connected to my network via WiFI at home but cannot connect to SIP server when I am out and about and connected via Wireguard.
As I understand incoming packets from SIP server needs to be routed to the Wireguard client for SIP registration to work but I don't know what sort of rule I need to setup.
Since my phone can switch between home wi-fi and VPN conenction I do not want to setup port forwarding/NAT as in classic sense but somehow tell firewall to send packets back to Wireguard client is it is originated it.
What sort of rules I need for this setup to work?
I have OPNsense 21.1.1 with Wureguard server activated. I have followed the guide at https://docs.opnsense.org/manual/how-tos/wireguard-client.html
I connect to Wireguard from outside home as always online VPN. I am able to access to my LAN and get to the internet via the firewall without any issues.
I have SIP account on my phone and have no connection issues when connected to my network via WiFI at home but cannot connect to SIP server when I am out and about and connected via Wireguard.
As I understand incoming packets from SIP server needs to be routed to the Wireguard client for SIP registration to work but I don't know what sort of rule I need to setup.
Since my phone can switch between home wi-fi and VPN conenction I do not want to setup port forwarding/NAT as in classic sense but somehow tell firewall to send packets back to Wireguard client is it is originated it.
What sort of rules I need for this setup to work?