forward all traffic thru Wireguard VPN

Started by bbchucks, February 10, 2023, 05:07:05 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 10, 2023, 05:07:05 PM
Hi all i'm new to opnsense need some help routing all vpn traffic in my network thru wireguard VPN.

I followed this guide to setup Windscribe VPN with wireguard - https://www.wundertech.net/how-to-set-up-wireguard-in-opnsense/

and with the routing i used this guide - https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html

However I can't tell if i'm actually connected to the VPN and on my internal network if i go whatsmyip.com it doens't show the windscribe's ip.

Any assistance is greatly appreciated!

the Handshake tab shows -
wg1   XXXXXXTjPUnnUtUapeLa2xA2XHvBFc=   0

the status tab shows -
interface: wg1
  public key: XXXXXXXRztjod9crXHynuqkK2w=
  private key: (hidden)
  listening port: 51820

peer: XXXXnnUtUapeLa2xA2XHvBFc=
  endpoint: 173.205.XXXX:1194
  allowed ips: 0.0.0.0/0
  transfer: 0 B received, 44.95 KiB sent
  persistent keepalive: every 25 seconds


from windscribe vpn setup file - changed IPs for privacy
[Interface]
PrivateKey = XXXXXYCQi6XsVBOQSXVo=
Address = 100.124.XXX.1/32
DNS = 10.255.255.3

[Peer]
PublicKey = XXXXXXXnUtUapeLa2xA2XHvBFc=
AllowedIPs = 0.0.0.0/0
Endpoint = XXXXX.whiskergalaxy.com:1194
PresharedKey = XXXXUActIlB17JctoldX9J3Y=

opnsense wireguard settings -
<server version="0.0.4">
        <servers>
          <server uuid="7c7c7be9-fb42-4048-af5a-52df37948a69">
            <enabled>1</enabled>
            <name>windscribe</name>
            <instance>1</instance>
            <pubkey>XXXtjod9crXHynuqkK2w=</pubkey>
            <privkey>XXXXXXYCQi6XsVBOQSXVo=</privkey>
            <port>51820</port>
            <mtu>1420</mtu>
            <dns/>
            <tunneladdress>100.124.XXX.1/32</tunneladdress>
            <disableroutes>1</disableroutes>
            <gateway>100.124.XXX.2</gateway>
            <peers>eb08a058-9ed7-4dfd-9354-66e28fbe3046</peers>
          </server>

<client uuid="eb08a058-9ed7-4dfd-9354-66e28fbe3046">
            <enabled>1</enabled>
            <name>windscribeXX</name>
            <pubkey>XXXXXXXOTjPUnnUtUapeLa2xA2XHvBFc=</pubkey>
            <psk/>
            <tunneladdress>0.0.0.0/0</tunneladdress>
            <serveraddress>XXXXXX.whiskergalaxy.com</serveraddress>
            <serverport>1194</serverport>
            <keepalive>25</keepalive>
          </client>
November 24, 2023, 12:16:38 PM #1
Hello,

I skimmed through your post because it is super long and does not include quite a few details.
The first thing that pops out is that you haven't configured your Wireguard correctly so anything else is pointless until you fix this.
In VPN -> Wireguard -> Diagnostics you should be able to see value other than 0 and in the range of KB in both received and sent.
Sometimes scarce bytes escape into it so if you see the sent bytes increase to a few KB and the received bytes are 148 then it is possible that you still haven't configured it well.
Print
Go Up Pages1
User actions