Wireguard VPN working but not routing...

Started by Hoe, January 21, 2022, 07:36:13 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 21, 2022, 07:36:13 PM Last Edit: January 21, 2022, 07:56:10 PM by Hoe
Hey all and belated HNY! :)

I need a little help I think as I am going in circles and I don't know what the problem is.

I have 2x OPNSense Firewalls, one at Home the other on in the Cloud, I have a WireGuard VPN configured to link the two together and my mobile connects through the Cloud VPN all the time.

I had it all working fine and very reliable I was delighted, then a few months ago after a hardware failure I ended up reconfiguring my home OPNsense box and I since then I have never been able to get the VPN to route traffic too or from my LAN, though the VPN is up and working the Firewalls can ping each other fine!

I am 99.9% sure the problem is at Home as I don't think the VPS confiugration has changed since it last worked, however I have installed a few updates since it worked so I guess that cdould have had an impact if there were changes I was unaware about.

I have even tried adding a manual Route in my Firewall but from what I can tell my home box just does not forward the requests to the VPN Server.

All rules below are from my Home OPNsense box only as I am pretty sure this if the problem, however I will reply to this post with the VPN configuration if required.

Outbound NAT:
Hybrid outbound NAT rule generation (automatically generated rules are applied after manual rules)
Interface    Source    Source Port    Destination    Destination Port    NAT Address    NAT Port    Static Port    Description    
      WAN    This Firewall    *    *    *    Interface address    *    NO         
      WAN    VPN net    *    *    *    Interface address    *    NO         

Firewall: Rules: VPN
        Protocol    Source    Port    Destination    Port    Gateway    Schedule    Description    
   IN   IPv4 *    *    *    *    *    *    *       
   OUT   IPv4 *    *    *    *    *    *    *       

Firewall: Rules: :LAN
   IN   IPv4 *    VPN net    *    *    *    *    *       
   OUT   IPv4 *    *    *    VPN net    *    *    *       

I have also tried adding rules to the "Wireguard (Group)" but still no luck.

VPN Server IP
10.8.0.1
Home VPN Client IP
10.8.0.2

Both Firewall's can ping each other and my Desktop here on the LAN can ping the local OPNsense VPN Client IP (10.8.0.2) but cannot get a response from 10.8.0.1.

If I trace route it of course it stops at the first hop the local OPNsense box.

Also just to confirm, the VPN Configuration I am pretty sure if fine as it has not changed since is worked, I have all the right Allowed IP's etc.

Local Allowed IP:
10.8.0.1/32 (VPS Server)
10.10.0.1/24 (Another Remote Network)
10.50.0.1/24 (Another Remote Network)

Remtote Allowed IP:
10.8.0.2/32 (Local OPNsense VPN Client)
10.0.0.0/24 (Home LAN)

Thanks

Stuart.
January 22, 2022, 12:50:56 AM #1
Solved, went away, watched the new Ghostbuster's movie, came back with a fresh head and found that I had Disabled a custom routing rule in the VPN Server (YAY for me)!

Anyway all back to normal.

P.S. Before anyone suggests it, I have gone through and nuked all extra Firewall and NAT rules and rebooted to confirm it's working and close any extra wholes! :)
Print
Go Up Pages1
User actions