Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Assign Wireguard VPN to a physical port
« previous
next »
Print
Pages: [
1
]
Author
Topic: Assign Wireguard VPN to a physical port (Read 883 times)
orybdunt
Newbie
Posts: 2
Karma: 0
Assign Wireguard VPN to a physical port
«
on:
August 13, 2023, 03:21:28 pm »
Hi everyone, I configured ProtonVPN (Wireguard) on my OPNsense firewall ( I followed
this guide
).
The VPN works, but I don't want to route all traffic through the the VPN.
My firewall box has 3 ethernet interface, WAN, LAN and a free interface that a want to assign to the VPN.
I thought of creating a bridge between the wireguard wg0 interface and the igb2 interface but from what I understand it would not work because Wireguard is only layer 3. How could I do that?
Logged
Maurice
Hero Member
Posts: 1213
Karma: 158
Re: Assign Wireguard VPN to a physical port
«
Reply #1 on:
August 13, 2023, 03:53:51 pm »
Assign igb2 to a new interface (OPT1 by default) and configure it with its own subnet. Then add the rule from the "Firewall Rules" section of the guide to OPT1 instead of LAN.
Cheers
Maurice
Logged
OPNsense virtual machine images
OPNsense aarch64 firmware repository
Commercial support & engineering available. PM for details (en / de).
orybdunt
Newbie
Posts: 2
Karma: 0
Re: Assign Wireguard VPN to a physical port
«
Reply #2 on:
August 14, 2023, 02:32:31 pm »
Thank you, much simpler than I had imagined.
I configured the OPT1 interface to its subnet, enabled the DHCP server by also specifying the VPN's internal DNS server, and had to add the firewall rule to allow DNS server communication.
It works perfectly, now when I want to use the VPN I just plug the Ethernet cable into the appropriate port.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Assign Wireguard VPN to a physical port