Wireguard to VPN provider

Started by Vincent Chen, August 07, 2025, 09:35:54 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 07, 2025, 09:35:54 AM
Hi, all

My OpenVPN sever and OpenVPN connection to VPN provider work fine in 25.1. After upgrade to 25.7,
It seems VPN connection need a certificate from VPN provider now. Is this true?

Now I tried to connect to  VPN provider through wireguard but never success yet. Here is the
configuration, hope someone correct what I do wrong.

1. create wireguard instance
Name: Surfshark
Public key: *****
Private key: *****
Listen port: 51820
Tunnel address: 10.14.0.2/16
Peer: SurfsharkJP
disable route: checked

PS: I am confused, why I need a wireguard server occupy a listen port for just establish VPN client connection

2. create wireguard peer
Name: SurfsharkJP
Public key: *****
Allow IP: <my vlan subnet>
End point address: *****
End point port: *****
Instances: Surfshark

3. check wireguard status
ok wg0 interface Surfshark 51820
ok wg0 peer SurfsharkJP ***** 41s 202k 61k

4. assign interface
Surfshark wg0 enable

5. NAT rule
Surfshark any    *    *    *    Interface address    *    NO

6. Surfshark rule
pass IPv4 *    *    *    *    *    *    *

7. vlan rule
pass IPv4 *    VLAN net    *    *    *    GW_Surfshark    *

8. gateway

GW_Surfshark Surfshark IPv4 255 10.14.0.1

With above configuration, VLAN net can not resolve DNS,
I can see 10.14.0.2 connect to 8.8.8.8 udp 53 passed but never receive any ip address.

Thanks for your help,
August 07, 2025, 01:42:22 PM #1
Quote from: Vincent Chen on August 07, 2025, 09:35:54 AMAllow IP: <my vlan subnet>
This has to be 0.0.0.0/0
August 08, 2025, 10:22:53 AM #2
Thanks Bob.

After changed wireguard peer allow ip setting to 0.0.0.0/0, connection to VPN
provider works fine now.

I got a lot to learn about wireguard VPN.

Print
Go Up Pages1
User actions