Messages

Hi everyone,
i need some help setting up a site-to-site tunnel using wireguard. I already set up a lot of them but after an entire day trying to fix this problem i am ko.
Both sides have WAN Rules with port 60300 (wireguard) open from every source to every destination.

SITE A:

Code Select Expand

[Interface]
PrivateKey = priv_key_site_A
Address = 10.20.0.7/24
ListenPort = 60300

[Peer]
PublicKey = pub_key_site_b
Endpoint = ip site b:60300
AllowedIPs = 10.20.0.6/32

SITE B:

Code Select Expand

[Interface]
PrivateKey = private_site_B
Address = 10.20.0.6/24
ListenPort = 60300

[Peer]
PublicKey = public_site_A
Endpoint = ip_site_A:60300
AllowedIPs = 10.20.0.7/32

If i try to reset wireguard from shell it doesn't return any error, in handshake tab i read the key followed by a zero on both sides.
If i open the firewall i have no traffic on wg interfaces.
I already assigned both wg interfaces on both sides, i activated them and enable prevent removal.
I don't know what i can do to solve this problem, thanks in advice

EDIT: on site B i already have another wireguard interface for another site-to-site and it works flawlessly.

Hi,
I'm new to OPNSense so maybe my question can be a dumb one.
I'm setting up an OPNSense firewall in my home lab and i have two different ISP; i already configured load balancing and it works fine, but now i need to connect a voip phone in the LAN that must be connected straight to one of the two WAN that i configured using VLAN 20.
Below the scheme:
WAN1 192.168.2.0 VLAN 20 -> OPNSENSE -> VOIP PHONE
WAN1 192.168.1.0 VLAN 1 -> OPNSENSE -> Client
WAN2 192.168.0.0 VLAN 1 -> OPNSENSE -> Client

The client are already working, i don't know how to setup the voip phone.
Thanks in advice to everyone who will spend time reading this thread.