Show Posts
1
20.1 Legacy Series / WireGuard in transparent filtering bridge mode
« on: August 06, 2020, 01:13:04 pm »
Hi,
I am running OPNsense as transparent filter in bridge mode with interfaces WAN, LAN, OPT1, OPT2. The bridge has the IPv4 address 192.168.0.2/24.
The only thing left to setup is WireGuard and I already had a working setup in non-bridged mode. Usually the WireGuard VPN is configured as 10.0.0.1/24 with an endpoint at 10.0.0.2/24. In bridged mode I can not reach other devices in the network, ie. I can ping only IP addresses of the OPNsense firewall, e.g. 192.168.0.2 and 10.0.0.1.
What I have tried so far:
What am I missing here to have WireGuard running in bridged mode?
thanks,
Albert
I am running OPNsense as transparent filter in bridge mode with interfaces WAN, LAN, OPT1, OPT2. The bridge has the IPv4 address 192.168.0.2/24.
The only thing left to setup is WireGuard and I already had a working setup in non-bridged mode. Usually the WireGuard VPN is configured as 10.0.0.1/24 with an endpoint at 10.0.0.2/24. In bridged mode I can not reach other devices in the network, ie. I can ping only IP addresses of the OPNsense firewall, e.g. 192.168.0.2 and 10.0.0.1.
What I have tried so far:
- configure OPNsense as transparent filter with interface BRIDGE and assign 192.168.0.2/24, add WireGuard interface wg0 and assign it to VPN on 10.0.0.1
- add VPN interface to bridge, such that it contains WAN, LAN, OPT1, OPT2, and VPN
- configure WireGuard on 192.168.0.101/24 and the endpoint on 192.168.0.102/24
- assign WireGuard wg0 to "_VPN" and create a second bridge VPN with "_VPN" only member
- add new bridge "VPN" to BRIDGE
What am I missing here to have WireGuard running in bridged mode?
thanks,
Albert