2 Wan interfaces > Use one for Wireguard exclusively?

[jbattermann]

Good afternoon,

I have two physical WAN connections and I was wondering IF and HOW I could use one of them to

• Connect to a VPN via Wireguard over one of these WAN interfaces (only over that one and that one should be exclusively used for that Wireguard connection)
• Use that Wireguard VPN / its connection to route one specific local system to the outside world / other end of the VPN

I see that for OpenVPN and Ipsec connections you can apparently select an interface, but I can't find something like that for the os-wireguard plugin / VPN's settings (or I'm just missing it).


Is that possible currently (running 21.7.3_3 + v1.7 of the os-wireguard plugin) and if so, how?

Thanks and best regards!
-J

[Greelan]

This how-to should help with the second part: https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html

As for the first part, I’m guessing, but perhaps if you create a FW rule on the required WAN interface, direction OUT, source This Firewall to the VPN port (eg 51820), that might work?