Messages

@cookiemonster, I don't like the concept of UPnP either. But the NAT type does make a lot of difference in matchmaking and voice comms in many multiplayer games and unfortunately Call of Duty is one of them. Ideally I would love to just portforward to a single device that I play on but doing it for all the devices when hosting a LAN party is just a hassle. So its just convinient to use UPnP during that time and later turn it off.

And like I already mentioned, I use a private VPN to mask my IP because I have static IP from my ISP. Just general safety, nothing exclusive that I'm trying to protect.

Any help would be appreciated guys. I'm still stuck with this.

@Monviech,

You mean create rules for selective routing to not use Wireguard tunnel if the traffic is using the given ports?
If so, I guess I can do that but the whole reason for me to use wireguard was protection. Call of Duty MW2 from 2022 had several vulnerabilities that allowed IP address to be leaked online. I don't think the new MW3 is any different. I'd rather use wireguard to mask my IP while playing.

Anyone?

Hey Sy,

How does Zenarmor reliably track media streaming traffic like Netflix, Prime Video etc?
If its not too complicated, perhaps I could try to do something similar using Alias or something for my needs.

Hello,

I have an Opnsense router on which I've setup a Wireguard client. I have a private VPS Wireguard server in the cloud and I'm redirecting all my home network traffic through it. I sometimes have friends over and play games on LAN, specifically call of duty. I want everyone to have Open NAT when connected to my home network. If I disable the wireguard tunnel and route all traffic through WAN, I can just enable UPnP and everything works fine. But if I route all traffic through Wireguard interface, UPnP does not get used at all (Shows nothing in the Status page). I've tried all combinations of External and Internal interface options in UPnP settings. Is there something I'm missing here?

Nobody?

Bump

Hello,

I have a wireguard client instance running on my OPNSense which I'm using to route my home network traffic through a private cloud VPS where I'm running the wireguard server instance. All though I would love to route all traffic through the wireguard tunnel, some websites and services just don't play well with any VPN encryption on the packets. I'm specifically trying to mitigate issues I've been having with some media streaming services and banking websites. Its very difficult to setup selective routing for media streaming services especially due to their vast collection of IPs that are ever changing.

Zenarmor does a pretty good job of identifying media streaming traffic and lets me block or allow it. I was just wondering if there is a way to use Zenarmor's ability to identify media streaming traffic, but instead of just blocking/allowing it, use it to route those packets through a tunnel/interface of my choice. Is this possible?

Thanks

Anyone?

Hello,

I have an Opnsense router on which I've setup a Wireguard client. I have a private VPS Wireguard server in the cloud and I'm redirecting all my home network traffic through it. I sometimes have friends over and play games on LAN, specifically call of duty. I want everyone to have Open NAT when connected to my home network. If I disable the wireguard tunnel and route all traffic through WAN, I can just enable UPnP and everything works fine. But if I route all traffic through Wireguard interface, UPnP does not get used at all (Shows nothing in the Status page). I've tried all combinations of External and Internal interface options in UPnP settings. Is there something I'm missing here?

Hello,

I'm trying to purchase Zenarmor from India using an Indian credit card but it gets declined due to non-compliance of RBI guidlines by Zenarmor's payment portal. Even WeChat is blocked in India. How can I purchase a subscription from India?

What does protecting the WAN interface do?
I ask because I thought protecting WAN would be the right way to filter incoming traffic through Zenarmor (To block sites, ads etc) but it turns out I need to be protecting LAN to do that.

I've placed an order for this appliance. It's an overkill for just Zenarmor at gigabit speeds or perhaps even with wireguard enabled. But I'll find some use for its processing power.

https://cwwk.net/products/i5-1335u-i7-1355u-13th-gen-2-5g-soft-router-intel-6x-intel-i226-v-fanless-mini-pc-firewall-appliance-proxmox-pfsense?variant=44933248975080

Hoping to have it in hand soon.

Hey @franco,

I'm currently trying to use my OPNSense firewall as a client to a wireguard server instance that I'm running on a remote DigitalOcean server. With these options missing, I'm completely confused how to set it up. It all seems to be in place to setup a wireguard server on opnsense rather than a client.

Like, if I'm creating a peer, it doesn't even have a field for private key. If I'm creating an instance (interface), I should not need to setup a listen port if I'm trying to setup a client, but it asks for it.

Could you please help me with this?