Can't access LAN IP of Access Point via Wireguard connection

[Heiko910]

Hi there,
Thanks for having me.
I am a total noob to Opnsense and Wireguard, but i have successfully managed to setup an Opnsense router for my LAN and I established a Wireguard tunnel from an android client to my LAN.
I can access my Nas that is part of the local area network and i can even access the Opnsense router via the wireguard tunnel.
For some reason I cannot access one specific IP address in this Lan which happens to be the WebUI of my access point in the house. (192.168.1.254 in case that matters)
I have tried to ping that IP from the android device and i get a response immediately.
Does anyone have any idea why I can easily access all devices within that Subnet but i can access that AP?
Thanks in advance,
Heiko

[Patrick M. Hausen]

Does this access point have a default gateway configured pointing to your OPNsense?

[Heiko910]

I think it does but so does my NAS.
I can access everything from a Wireguard client except this AP.

[tiermutter]

Mybe the AP will not respond to http/https (?) requests from foreign subnets. Some devices (or the desired service of those) have an option to explicity permit those requests.

[Heiko910]

Does this access point have a default gateway configured pointing to your OPNsense?

Hey PMHAUSEN,
You fixed it.
You asked about the default gateway in the Access Point. I checked this morning. The default gateway was set to 0.0.0.0.
I changed it to the IP of the gateway and now I can access it via Wireguard.
Thanks again.
Problem solved!

[fengchen_opn]

Mybe the AP will not respond to http/https (?) requests from foreign subnets. Some devices (or the desired service of those) have an option to explicity permit those requests.

I compared openwrt and found that this problem can be solved by setting snat
firewall - nat - outbound:
Select - Hybrid outbound NAT rule generation
Add rule - interface: lan, tcp/ip: ipv4, source address: wg net, destination address: lan net, translation/target: lan address