WireGuard Site-To-Site
-
This post is deleted! -
@fireix I can answer my own question :) I needed to add GW at both pfSense-boxes and then a seperate route for each network to point to that gateway. Now I can ping each others subnets.
Is it this way it is supposed to work? Adding gw-entry and then point each private subnet to that gw?
I think I have learned a lot today. I just assumed it would "route" automatically.
I also wonder how to get the LAN-devices to actually follow up on the route. I can communicate from pfSense to pfSense on both networks IF I choose automatic interface - but not from the LAN interface (if I choose ping 10.0.0.2 and LAN-interface).
UPDATE: And now I found out that.. Had to choose "Upstream gateway" on the WireGuard-interface.
-
@fireix If you haven't checked it out, do so.
Youtube Video -
@bob-dig Yeah, found it. It helped me a bit and the rest was just trial-and-error.
-
Yes that's how I do it also. I'm experimenting with FRR now to dynamically discover the routes instead of having to manually define them.
