Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Wireguard: Peer's port mismatches and never do handshake
« previous
next »
Print
Pages: [
1
]
Author
Topic: Wireguard: Peer's port mismatches and never do handshake (Read 2572 times)
dsh
Newbie
Posts: 4
Karma: 0
Wireguard: Peer's port mismatches and never do handshake
«
on:
November 14, 2021, 08:47:00 am »
Hi there.
I am trying to connect my linux device to my opnserver. Unfortunately my linux device's port never matches and thus never do handshake.
OPNsense config
Endpoint config
Linux device wg0.conf
First I have tried without ListenPort, thus it was running at random port on linux device.
When I see OPN senses config, I see below.
For example in this case it's trying to connect back port 44000.
If I intentionally change to 44000 in Linux device with ListenPort declaration, OPNsense's endpoint's port will change to random port.
What could be the issue. I have allowed 52820 on firewall. Thanks in advance.
«
Last Edit: November 14, 2021, 08:57:31 am by dsh
»
Logged
Patrick M. Hausen
Hero Member
Posts: 6818
Karma: 572
Re: Wireguard: Peer's port mismatches and never do handshake
«
Reply #1 on:
November 14, 2021, 09:53:20 am »
What does your outbound NAT rule look like? If you manually created tge NAT rules snd NAT "everything" instead if e.g. "LAN net", that can happen.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
dsh
Newbie
Posts: 4
Karma: 0
Re: Wireguard: Peer's port mismatches and never do handshake
«
Reply #2 on:
November 14, 2021, 10:00:15 am »
My NAT outbound is by default.
Logged
dsh
Newbie
Posts: 4
Karma: 0
Re: Wireguard: Peer's port mismatches and never do handshake
«
Reply #3 on:
November 14, 2021, 10:13:52 am »
Not sure what they means hopefully useful for you.
44027 is the port showing in list configuration
Logged
chemlud
Hero Member
Posts: 2485
Karma: 112
Re: Wireguard: Peer's port mismatches and never do handshake
«
Reply #4 on:
November 14, 2021, 11:19:24 am »
You have a public IP in Mongolia? Would not post it here...
Looks like the tunnel is up, according to the last screenshot. Maybe some FW rules missing on WG interface to make traffic flow?
«
Last Edit: November 14, 2021, 11:21:17 am by chemlud
»
Logged
kind regards
chemlud
____
"The price of reliability is the pursuit of the utmost simplicity."
C.A.R. Hoare
felix eichhorns premium katzenfutter mit der extraportion energie
A router is not a switch - A router is not a switch - A router is not a switch - A rou....
Patrick M. Hausen
Hero Member
Posts: 6818
Karma: 572
Re: Wireguard: Peer's port mismatches and never do handshake
«
Reply #5 on:
November 14, 2021, 11:19:58 am »
OK, so it's the other end that is misbehaving. You need to check the NAT and/or the WireGuard configuration there.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Wireguard: Peer's port mismatches and never do handshake