"
Hi All,
I've setup a Site2Site Opnsense firewall with Wireguard. Now I want to be able to route all traffic over to the other Opnsense firewall. So I put 0.0.0.0/0 to the allowed IPs list in the wireguard config. This works for all the vlans I created (without NAT). With firewall rules I can give clients access to internet via wireguard or direct to internet. But I want the firewall it self direct to the internet without wireguard, so that ie I can download updates. It looks like the 0.0.0.0/0 gets a higher prio then the Default route? How can I fix this?
This is how the route table looks like:
Destination Gateway Flags Netif Expire
0.0.0.0/0 link#17 US wg0
default xx.xx.xx.xx UGS vlan0600
Is there a way to change the Metric? Or is there a other way to do this?
Regards,
I've setup a Site2Site Opnsense firewall with Wireguard. Now I want to be able to route all traffic over to the other Opnsense firewall. So I put 0.0.0.0/0 to the allowed IPs list in the wireguard config. This works for all the vlans I created (without NAT). With firewall rules I can give clients access to internet via wireguard or direct to internet. But I want the firewall it self direct to the internet without wireguard, so that ie I can download updates. It looks like the 0.0.0.0/0 gets a higher prio then the Default route? How can I fix this?
This is how the route table looks like:
Destination Gateway Flags Netif Expire
0.0.0.0/0 link#17 US wg0
default xx.xx.xx.xx UGS vlan0600
Is there a way to change the Metric? Or is there a other way to do this?
Regards,
