Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Wireguard on PF has defeated me

    Scheduled Pinned Locked Moved
    WireGuard
    3
    3
    1.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • X
      xxGBHxx
      last edited by

      OK I'm defeated.

      Further to my issues Here I just checked one of my connections and it was inexplicably down again while the other was up. Checked a whole bunch of stuff and nothing would bring it back up. Restarted the firewall and then neither WG VPN would come up despite doing nothing but rebooting.

      As before I then reconnected my OpenVPN VPN, deleted Wireguard completely, re-installed and still neither WG vpn would work.

      I've now removed WG completely and I'm on OpenVPN again.

      When and if you get WG working it seems great and indeed I've been connected for a month or more without a single issue. But in my setup, at least, if I so much as look at it a bit funny it drops and I just can't get it back up again.

      I wish I could say it was my ISP or the VPN vendor but this is via 2 unrelated ISP's to two unrelated VPN vendors. Both vendors support WG through their desktop and mobile apps and I can connect to them, flawlessly every time and they never drop on the exact same ISP links.

      pfSense on VMWare in my environment just isn't stable.

      Also the lack of ANY debug information from WG whatsoever along with no ability to turn logging on drives me mental. The best I can see is the packet count going up but there's just nothing else anywhere. I appreciate that may be by design, that there's nothing much it can report or that it should "just work" but it's infuriating. At least OpenVPN has a fully configurable level of logging which makes troubleshooting it simple.

      WG seems great in other apps and I've used it for months flawlessly without a single issue but for me, in PF it's just not working.

      G

      cmcdonaldC 1 Reply Last reply Reply Quote 0
      • cmcdonaldC
        cmcdonald Netgate Developer @xxGBHxx
        last edited by

        @xxgbhxx send me a DM, I'd like to investigate this with you.

        Need help fast? https://www.netgate.com/support

        1 Reply Last reply Reply Quote 0
        • G
          gjaltemba
          last edited by

          I feel you because I am dealing with a similar situation with pf wireguard. PIA is my VPN provider. Their linux app on ubuntu VM runs fine. PIA also has a tool to generate wireguard conf file to work with wg-quick on ubuntu. No problem.

          I generate the details in my ubuntu wireguard conf and enter the info in pf gui. Mapping is private key for tunnel. Endpoint and public key for peer. Address for opt interface and routing.

          The pf wireguard peer does not always handshake. The first time pf wireguard connected to PIA it was perfect. The connection dropped after 2 weeks. Now the connection has long ping times and very slow.

          Is there a way to automate mapping linux wireguard conf to pf wireguard tunnel and peer conf?

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.