Looked closer at this again now that I've upgraded. Still no firewall logs at all for this traffic which is super strange because all violations are supposed to be logged as I have "Default block" logging enabled.
Noticed the Wireguard rule in the Floating was only applying to the WAN IF but the OpenVPN one for all interfaces (did this change? dunno).
Made a new rule to allow Wireguard UDP 51820 on all interfaces, now it's working from the LAN.
Still doesn't explain the lack of logs, but at least there's a known fix.
Noticed the Wireguard rule in the Floating was only applying to the WAN IF but the OpenVPN one for all interfaces (did this change? dunno).
Made a new rule to allow Wireguard UDP 51820 on all interfaces, now it's working from the LAN.
Still doesn't explain the lack of logs, but at least there's a known fix.