Cannot connect to LAN addresses through VPN road warrior

Started by mchampion, December 23, 2022, 10:09:19 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 23, 2022, 10:09:19 PM Last Edit: December 23, 2022, 10:11:08 PM by mchampion
I have set up both WireGuard and OpenVPN to use to connect to my home network while off site. There are no issues with either with regard to internet access and ad blocking through pi hole, but I can't access any LAN IP other than the router itself. I presume this is a firewall permission issue since the same problem occurs with either WG or OpenVPN.

Here's the details of my WG setup since it's the one I primarily use.

Router IP: 192.168.0.1
LAN IP: 192.168.0.0/16

VPN > WireGuard > Local
Name: <WG name>
Interface: wg0
Tunnel address: 10.0.1.1/24
Port: 51899
Endpoints: 10.0.1.2/32 (phone) and 10.0.1.3/32 (laptop)

Interfaces > <WG interface name>
Enabled
Device: wg0

Firewall > Rules > <WG interface name>
Action: Pass
Interface: <WG interface name>
Direction: In
TCP/IP Version: IPv4+IPv6
Protocol: Any
Source: Any
Destination: Any

I also have a "WireGuard (Group)" entry under Firewall > Rules, though I'm not sure where that came from. I duplicated the same firewall rule as above for this group, but it didn't fix it.

It seems like these firewall rules should allow me to access anything on my LAN, but it just times out for anything but the router IP.
Any suggestions about what I'm doing wrong? It's probably something super easy and obvious but I'm kinda dumb when it comes to this stuff.
December 24, 2022, 03:11:39 AM #1
What is in the Endpoint configs on OPNsense, and what do the WG configs on the devices look like?

The how-to on the wiki should help: https://wiki.opnsense.org/manual/how-tos/wireguard-client.html
Print
Go Up Pages1
User actions