[SOLVED] Wireguard-go silent and no listen on fresh install

Started by khajiit, May 06, 2022, 10:21:04 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 06, 2022, 10:21:04 PM Last Edit: May 09, 2022, 11:59:47 PM by khajiit
Hello!
I'm trying to link two OPNsenses, both are behind NAT.

       
  • fresh install
  • updated
  • only basic wan/lan configure
On gateways portforwarding working great: I can see packets with `tcpdump` inside OPNsense when attaching to console and doing `netcat` from other gateway.
`wg0` interface gets it's address and routes are added to system.

But `netstat -l4n -p udp` shows that noone is listening choosen port (I've tried empty, default 51820, 52000, 7000)

Running `LOG_LEVEL=debug wireguard-go <path to wg0>` also gives no clue.

Package versions are:
wireguard-go   0.0.20220316_1,1
wireguard-tools   1.0.20210914_1

Followed this guide https://docs.opnsense.org/manual/how-tos/wireguard-client.html
May 10, 2022, 12:05:24 AM #1
First of all, rather than in linux,nor kmod nor go WILL NOT SHOWN AS LISTENiNG.
Wireguard debugging is bad as hell by design, and this makes it much harder.

Second, incoming traffic must be EXPLICITLY enabled not only on WAN but on WireGuard(Group) too.
Print
Go Up Pages1
User actions