Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
wireguard : connections from lan to the wan get redirected to intern IP
« previous
next »
Print
Pages: [
1
]
Author
Topic: wireguard : connections from lan to the wan get redirected to intern IP (Read 811 times)
zerwes
Full Member
Posts: 125
Karma: 8
wireguard : connections from lan to the wan get redirected to intern IP
«
on:
April 01, 2022, 05:41:32 pm »
Hello.
I currently try to avoid the redirection of the traffic targeting the WAN ip address from insight (lan network) to the lan address of the opnsense device for the wireguard vpn.
Example:
wan: 1.2.3.4/30\
lan --- opnsense --- inet
\ 10.10.8.1/25
the wireguard client config has
Endpoint =
1.2.3.4
:5555
wireguard works and is up and running, but as soon as the client (road warrior) enters the lan segment, the wireguard service redirects the endpoint to 10.10.8.1.
# wg | grep endpoint
endpoint:
10.10.8.1
:5555
wireguard is still active and running at this time. But as soon as the client leaves now the lan segment again, the wireguard service on the client requires a restart, as it will not switch back to the wan IP (why should it, the internal lan IP is not reachable and can not send a redirect).
So in order to have a always on feature of the wg client service, I am trying to avoid the icmp redirect as soon as the traffic comes from the lan side.
Unfortunately I am out of luck until now and hoping for some input pushing me into the right direction.
Thx in advance
«
Last Edit: April 01, 2022, 08:58:04 pm by zerwes
»
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
wireguard : connections from lan to the wan get redirected to intern IP