16
21.1 Legacy Series / Re: Wireguard site-to-site impossible to setup
« on: February 11, 2021, 06:36:35 pm »Do your LAN rules on both sides allow traffic to the respective remote LANs?
Uploaded my complete config in screenshots
Server:
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Do your LAN rules on both sides allow traffic to the respective remote LANs?
OPNsense on NanoPI R4S
You add a second Phase2, left wanip/32, right remote subnet
Add WAN IP to a second Phase2
#ping -S LANIP LDAPIP
Cheers,
Franco
+1 for put the auth in the gui!
but i have the same problem as akron.
After i fill the auth forms correct i just get anCode: [Select]{"message":"Basic auth failed"}
Did you find a solution akron?
Cheers Chris
For future reference: os-haproxy 2.10 (available in the upcoming OPNsense 18.7.8 ) finally adds support for HTTP Basic Auth.
See https://github.com/opnsense/plugins/pull/970#issuecomment-437688137
Hey akron, what @fabian says, and a question: did you check the certificate with another connection, did that work?
My guess, there's something wrong with the crt.
Btw. I simply pushed the crt. to the store and that was it, no CA (need to set that up in spare time, heck, I may use Opnsense for that )
Greetings mark
Very likely another certificate validation error. I would check host name and time range of the certificate but I don't know this code.
Hey fabian, thanks for the clear answer.
Your first Q. :yes using self signed cert. for my server, all is a localdomain.
Next: what say the logs:Code: [Select]config[23141]: {"url":"https:\/\/cloud.localdomain\/nextcloud\/remote.php\/dav\/files\/backer\/","content_type":null,"http_code":0,"header_size":0,"request_size":0,"filetime":-1,"ssl_verify_result":18,"redirect_count":0,"total_time":0.164199,"namelookup_time":0.004971,"connect_time":0.005542,"pretransfer_time":0,"size_upload":0,"size_download":0,"speed_download":0,"speed_upload":0,"download_content_length":-1,"upload_content_length":-1,"starttransfer_time":0,"redirect_time":0,"redirect_url":"","primary_ip":"10.10.100.6","certinfo":[],"primary_port":443,"local_ip":"10.10.100.1","local_port":42812}
Than: no hehe I did not forget the 's'I click on it from another webpageI don't know what I was thinking here, I don't do that, just the address
I allraedy 'knew' app password should be okay with 2fa but still tested I, wanted to be sure that was not an issue when I post here, thanks.