1
Virtual private networks / [SOLVED] Several wireguard servers and clients concurrent to OpenVPN
« on: January 05, 2021, 10:34:11 pm »
Dear opnsense friends,
I'm trying to move from OpenWrt to OPNsense for my main FW/router (VM in proxmox, with 3 NICs passthrough).
Having several VLANs running, OpenVPN servers and OpenVPN clients (split tunnel) and trying to get Wireguard servers and clients (some split), igmp... and I used in the past also another *sense FW/Router (w/o Wireguard, that's why I changed to OpenWrt and now thinking to move to OPNsense).
My WG servers and endpoints are as well on an OpenWrt FW/router (abroad, no HW access) or other devices. So, with OpenWrt everthing works always, never had an issue.
However, when it comes to Wireguard on OPNsense I observed bizarre things.
- On my first attempt, after having set up VLANs, igmp blabla and 2 wg servers and 1 wg client, the client worked, both wg servers no handshake. I used various tutorials found on the opnsense docs, web, forum (although my initial one should have worked, analogous firewall/NAT stuff to OpenVPN servers and clients).
- So I took a fresh install without VLANs and just installed 1 wg server and 1 wg client, both showed handshake (hurray), but there was no data flow on the connection via client ?
Before I come up with my wg configuration details, is there something magic to take into account with regard to wireguard compared to openvpn (fw/nat) to make it run or are several wg servers and wg clients currently problematic on opnsense (no offense, just asking) ?
I'm obviously not an expert, just trying to achieve what we need.
Thanks a lot for your patience in advance.
cheers chulio
I'm trying to move from OpenWrt to OPNsense for my main FW/router (VM in proxmox, with 3 NICs passthrough).
Having several VLANs running, OpenVPN servers and OpenVPN clients (split tunnel) and trying to get Wireguard servers and clients (some split), igmp... and I used in the past also another *sense FW/Router (w/o Wireguard, that's why I changed to OpenWrt and now thinking to move to OPNsense).
My WG servers and endpoints are as well on an OpenWrt FW/router (abroad, no HW access) or other devices. So, with OpenWrt everthing works always, never had an issue.
However, when it comes to Wireguard on OPNsense I observed bizarre things.
- On my first attempt, after having set up VLANs, igmp blabla and 2 wg servers and 1 wg client, the client worked, both wg servers no handshake. I used various tutorials found on the opnsense docs, web, forum (although my initial one should have worked, analogous firewall/NAT stuff to OpenVPN servers and clients).
- So I took a fresh install without VLANs and just installed 1 wg server and 1 wg client, both showed handshake (hurray), but there was no data flow on the connection via client ?
Before I come up with my wg configuration details, is there something magic to take into account with regard to wireguard compared to openvpn (fw/nat) to make it run or are several wg servers and wg clients currently problematic on opnsense (no offense, just asking) ?
I'm obviously not an expert, just trying to achieve what we need.
Thanks a lot for your patience in advance.
cheers chulio