wireguard site 2 site not working

Started by austrian-firewaller, December 01, 2025, 02:46:42 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 01, 2025, 02:46:42 PM
I have two openSense firewalls both are Version 25.7.7.
I set up wireguard acording to the official documentation, without creating a interface for wireguard.
Wireguard it self, works fine - tunnel is established.

Topology is like that:
Site A: 192.168.1.0/24 - Tunnel IP 172.16.0.1
Site B: 192.168.10.0/24 - Tunnel IP 172.16.0.10

I have an allow -all- rule on the LAN and wg group firewall rule set.
I can ping from site B to the tunnel IP from the firewall on site A, and the other way around.

But I cannot, for christ sake ping any IP adress from one network to the other.. -> I see in the logs the the paket is allowed but ping for example never comes back.
But I can ping the tunneld network directly from the firewall itself.. So I also tried to disable outbound NAT for wireguard, still does not work. So I am clueless.

I would appriciate any help.
December 01, 2025, 03:03:38 PM #1 Last Edit: December 01, 2025, 07:17:46 PM by Patrick M. Hausen
What is the AllowedIP settings in the WireGuard peer on each side?
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
December 01, 2025, 07:00:06 PM #2
Quote from: austrian-firewaller on December 01, 2025, 02:46:42 PMwithout creating a interface for wireguard
Create one on both sides.
Print
Go Up Pages1
User actions