Wireguard won't work unless reset of Bogon network

Started by OzziGoblin, May 17, 2024, 09:11:34 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 17, 2024, 09:11:34 AM
Hello everyone,

I hope someone can assist me, I've setup Wireguard as per "https://docs.opnsense.org/manual/how-tos/wireguard-client.html" but I cannot get it to work properly until I reset the "Block Bogon Networks" on the WAN interface.  I can either enable it or disable it, but it won't function until 1 of them has been done.

What I mean by it won't work properly, is I can connect, the logs show an active connection on OpnSense and the client, but while traffic is sent, no traffic is recieved.

When the FW reboots, the connection is reset and I'm in the same boat unable to transmit data from the client to the fw.

I suspect it's got something to do with a WAN interface reset that occurs???
(I have enabled and disabled Wireguard, as well as restarting the service, but it makes no difference)

Any suggestions would really be appreciated.

thanks
August 09, 2024, 08:19:29 AM #1
OK, I eventually discovered the cause of this, my bad.

I didn't have a local fw policy rule allowing access to the local subnet address for DNS. 
I had a rule excluding access to all subnets except the Wireguard subnet

I've since fixed this and it's working.

P.S. if it isn't working check DNS  :D
Print
Go Up Pages1
User actions