Topics

1

Virtual private networks / Mullvad via wireguard and port forwarding

« on: December 11, 2021, 04:36:29 pm »

I can't get port forwarding to work on my Transmission container. The container is selectively routed to Mullvad using wireguard.

I have set up port forwarding on Mullvad's website. Wireguard test on the container is okay, but port forwarding test fails.

Code: [Select]

$ docker exec -it transmission bash
root@b7212cb4e31a:/# curl https://ipv4.am.i.mullvad.net/port/54853
{"ip":"185.204.*:*","port":54853,"reachable":false}
root@b7212cb4e31a:/# curl https://am.i.mullvad.net/connected
You are connected to Mullvad (server fi1-wireguard). Your IP address is 185.204.*.*
Do I have to configure port forwarding also on opnsense?

Opnsense version is 21.7.6.

Transmission config is attached.

These are the port mappings on docker-compose for transmission:

Code: [Select]

ports:
      - 9091:9091
      - 54853:54853
      - 54853:54853/udp


2

General Discussion / Book recommendations?

« on: January 03, 2021, 08:56:33 pm »

Hi, I would like to learn more about networking to get more out of my opnsense. Learning is one reason why I have opnsense in the first place.

I have read Todd Lammle's CCNA book a few years back, which I liked.

Can you give me some resources from which I can learn more about networking topics that relate to running opnsense in a home network?

I would like learn more about how to configure wireguard on opnsense for different scenarios, set firewall rules, configure NAT, gateways, route traffic from one host to wireguard. And other stuff what might be useful in a home setup.

3

Virtual private networks / WireGuard road warrior, no connection. Two servers.

« on: December 13, 2020, 06:38:06 pm »

I'm trying to setup wireguard access from my phone to my lan. I got it working previously when it was the only wireguard server on opnsense. I followed this tutorial: https://docs.opnsense.org/manual/how-tos/wireguard-client.html.

I then removed to it to setup wireguard connection to Torguard server: https://forum.opnsense.org/index.php?topic=20403.0.

Maybe it's because now there are two wireguard interfaces: wg0 and wg1. wg0 is used by my torguard vpn and wg1 is this new one for my phone. When i check Wireguard --> List cofiguration, there is only wg0, which i use to connect my NAS to Torguard vpn.

Should the wg1 interface be used in firewall rules somehow? 

4

Virtual private networks / Route host through wireguard

« on: December 09, 2020, 01:06:08 pm »

I'm a hobbyist and learning networking with opnsense.

I followed road warrior setup instructions and i can access my LAN devices fine, except my NAS. My NAS has two network interfaces configured. One of them is openvpn. When i disable that openvpn interface, i can access it just fine.

So how could i configure my systems to access my NAS?

I think maybe one possibility could be to route all NAS traffic that's going out through wireguard on opnsense. And remove openvpn on NAS. Is this possible?