Cant get Site to site to UbuntuLXC working.

Started by mkono87, December 01, 2022, 04:07:09 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 01, 2022, 04:07:09 AM
I have working on getting 2-3 site to sites setup. The first one is between 2 opnsense firewalls which was a pretty simple process. This 2nd one im working is between opnsense(A) and UbuntuLXC(B). This probably isnt an opnsense issue but figured Id ask here since I am using opnsense at one end.

I have gotten as far as being able to ping B from A but no matter what I try I cannot ping A from B. When I check wg on B there is a handshake but simply no traffic to be had. Below is my config on Site B. Im not 100% sure if the post up and down are correct. The router/firewall that site B has is ISP supplied so it doesnt really have many options for firewall. Bascially it allows for port forwarding, and static routes.

Site B Config

[Interface]
Address = 10.0.10.1/24
ListenPort = 51820
privatekey = MHYvEzm2jHXxxxxxxxxx
PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE

[Peer]
PublicKey = bQ025Gc06lxxxxxxxxxxx
AllowedIPs = 10.0.10.2/32,192.168.10.0/24
Endpoint = mydomain.ca:51820
On Site A I have a rule on wg0 interface to allow traffic from 192.168.1.0/24 to 192.168.10.0/24 and 10.0.2.8 to 192.168.10.0/24.

Could it be the lack of firewall or routing control preventing me from setting this up on B?
December 02, 2022, 03:56:16 AM #1
I have made a simple diagram and included ss from SiteA(opnsense). Hopefully this clears it up.

https://imgur.com/a/uQRUcZ4
Print
Go Up Pages1
User actions