"
I know this is a bit old, but did you ever get this sorted out?
I have been testing this kind of set up and found your post among my searches. I have some feedback that might help you or others searching the same sorts of issues.
I followed some processes from a YouTube video from channel What's New Andrew, titled "Sign in Always-On VPN with OPNsense & Mullvad: An Easy Step-by-Step Guide"
https://youtu.be/fFszlJpTBoc
He's using Mullvad in his example but it shouldn't make a difference.
I think the main difference, which it counter intuitive for me, is that he created the VPN Peer first, and then created the Instance from that.
This will probably solve your "offline" problem because it's your peer that is offline and the instructions you followed didn't document how to link them.
Another thing that may be documented that I missed, is to ensure to create an Outbound NAT rule for WireGuard(Group) to allow traffic. Then you can create your LAN rules for using the VPN instance you created.
These things got everything up and running and working overall.
My current issues are that I still get packet loss, around 13%-16% on average. Seems excessive to me.
EDIT: I discovered I had a bad CAT6 cable causing the issues. Replaced it and I'm down to 3% packet loss (which still seems like it should be near 0 to me, but it isn't really a problem any longer)
I also get NAT Type 3 on my gaming consoles, despite having Proton's "Moderate NAT" setting on.
EDIT: I am getting Type 3 on gaming consoled NOT running through the VPN as well, so it's something else in my network causing this. I also don't have any issue connecting with others...so it might be a false reporting or I do have some ports forwarded that might account for the non-issue. Regardless, it's not caused by the VPN so isn't a true problem to accompany this post.
I have been testing this kind of set up and found your post among my searches. I have some feedback that might help you or others searching the same sorts of issues.
I followed some processes from a YouTube video from channel What's New Andrew, titled "Sign in Always-On VPN with OPNsense & Mullvad: An Easy Step-by-Step Guide"
https://youtu.be/fFszlJpTBoc
He's using Mullvad in his example but it shouldn't make a difference.
I think the main difference, which it counter intuitive for me, is that he created the VPN Peer first, and then created the Instance from that.
This will probably solve your "offline" problem because it's your peer that is offline and the instructions you followed didn't document how to link them.
Another thing that may be documented that I missed, is to ensure to create an Outbound NAT rule for WireGuard(Group) to allow traffic. Then you can create your LAN rules for using the VPN instance you created.
These things got everything up and running and working overall.
My current issues are that I still get packet loss, around 13%-16% on average. Seems excessive to me.
EDIT: I discovered I had a bad CAT6 cable causing the issues. Replaced it and I'm down to 3% packet loss (which still seems like it should be near 0 to me, but it isn't really a problem any longer)
I also get NAT Type 3 on my gaming consoles, despite having Proton's "Moderate NAT" setting on.
EDIT: I am getting Type 3 on gaming consoled NOT running through the VPN as well, so it's something else in my network causing this. I also don't have any issue connecting with others...so it might be a false reporting or I do have some ports forwarded that might account for the non-issue. Regardless, it's not caused by the VPN so isn't a true problem to accompany this post.
