24.1.2 Wireguard does not work after updating

Started by H3n, February 20, 2024, 06:37:11 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3 4 5 6
User actions
February 22, 2024, 04:47:27 PM #30
I am on 24.1.2 and i am experiencing wireguard trouble.  about twice a day my wireguard stops working.  i am using the android app and pass everything through to my opnsense box.  once it stops working i have to go into the opnsense gui and restart the wireguard service.  it then starts working for about another half a day or so.

i am not sure what other info is needed to help me diagnose/fix so please let me know and i will provide. 

thank you all!
February 22, 2024, 07:20:27 PM #31
I'm wondering if this might be related to the issues I've been seeing with Suricata 7:

https://forum.opnsense.org/index.php?topic=38989.0

For people who are having trouble with Wireguard since the 24.1.2 update, can you SSH into your OPNSense box and check /var/log/suricata/eve.json to see if Suricata is dropping your Wireguard traffic?
February 23, 2024, 05:30:20 AM #32
i can give this a try.  what am i looking for?
February 23, 2024, 07:08:55 AM #33
Quote from: apoorva on February 22, 2024, 04:47:27 PM
I am on 24.1.2 and i am experiencing wireguard trouble.  about twice a day my wireguard stops working.  i am using the android app and pass everything through to my opnsense box.  once it stops working i have to go into the opnsense gui and restart the wireguard service.  it then starts working for about another half a day or so.

i am not sure what other info is needed to help me diagnose/fix so please let me know and i will provide. 

thank you all!

Did you try disconnecting/reconnecting the phone's WG app instead - without touching the FW ?
February 23, 2024, 07:35:35 AM #34
Quote from: apoorva on February 23, 2024, 05:30:20 AM
i can give this a try.  what am i looking for?

Just disable Suricata if you have it enabled and look what happens :)
February 23, 2024, 03:49:25 PM #35
Quote from: newsense on February 23, 2024, 07:08:55 AM
Quote from: apoorva on February 22, 2024, 04:47:27 PM
I am on 24.1.2 and i am experiencing wireguard trouble.  about twice a day my wireguard stops working.  i am using the android app and pass everything through to my opnsense box.  once it stops working i have to go into the opnsense gui and restart the wireguard service.  it then starts working for about another half a day or so.

i am not sure what other info is needed to help me diagnose/fix so please let me know and i will provide. 

thank you all!

Did you try disconnecting/reconnecting the phone's WG app instead - without touching the FW ?

yes. toggling that on the phone wireguard app does not work. i have had to restart the service in opnsense.
February 23, 2024, 04:34:21 PM #36
I think this could not be related to this opnsense/wireguard version. I have had this months ago.
I solved this by adding in VPN-Wireguard-Settings-Peers:

Keepalive interval = 25

hope that helps in your situation also.
Deciso DEC850v2
February 23, 2024, 05:23:17 PM #37
Having the same wireguard issues with too.
February 24, 2024, 11:12:32 PM #38
Also having wg issues here but only with my single site-to-site tunnel.

No issues immediately after the upgrade, the next day intermittent connection loss that progressively got worse. Initiated a reboot at the remote site and now the tunnel just won't establish at all.

My wg road warrior setup seems to be functioning ok though...
February 26, 2024, 05:55:02 PM #39
It looks like different issues and configurations are discussed in this thread. Can anybody tell me whether wireguard is stable in Opnsense 24.1.2_1?
OPNsense 24.7.11_2-amd64
February 26, 2024, 06:17:09 PM #40
I have three firewalls with various WireGuard tunnels running 24.1.2_1. All are working perfectly fine.

That does not in any way guarantee that your experience won't be different, though. Also I am running neither Suricata nor Zenarmor.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
February 26, 2024, 08:00:40 PM #41
Strangely, my issue seems to have resolved itself after a power outage. I assume the reboot is what fixed it... I had already tried a full reboot though and no config changes have been made.
February 28, 2024, 07:42:44 PM #42
Quote from: Patrick M. Hausen on February 26, 2024, 06:17:09 PM
I have three firewalls with various WireGuard tunnels running 24.1.2_1. All are working perfectly fine.

That does not in any way guarantee that your experience won't be different, though. Also I am running neither Suricata nor Zenarmor.

Thanks for your report. I have upgraded to Opnsense 24.1.2_1 this morning. No issues with wireguard till now (I am also not using Suricata or Zenarmor).
OPNsense 24.7.11_2-amd64
March 03, 2024, 11:44:59 AM #43
Hello everyone,

since the update to 24.1.2 I have also had some problems.

Wireguard connection is established, I can access the Opnsense network with my cell phone.
The connection to the remote firebox is still established, but I can't access any devices.

The Wireguard app is also faulty in the extensions.

The 3cx telephone system also has DNS problems.

Does anyone have a solution?

How to get back to firmware 23?
March 03, 2024, 11:47:19 AM #44
Wireguard is part of the base system now. Got to System > Firmware > Status and pick "reset all local conflicts" or some such from the menu in the bottom right.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
Print
Go Up Pages 1 2 3 4 5 6
User actions