Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Wireguard VPN - Specify ISP Gateway

    Scheduled Pinned Locked Moved Routing and Multi WAN
    4 Posts 3 Posters 571 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      Lugie
      last edited by

      Hello -

      Using an edge switch and some VLANs, I set up dual ISP gateways with my Netgate 2100. I have a Wiregard client connection via a third-party service.

      I've made interfaces and set up gateway groups with policy routing. All of that is working well with my LAN devices. I have two internet connections - VDSL/PPPoE (slow/reliable) and cable/DHCP (faster/unreliable). VDSL is the default gateway only because it (almost) never goes down. I have media devices that use the cable connection only and I don't mind if they get cut off by my cable ISP occasionally. That's what the policy routing is for.

      My Wireguard VPN always goes out via VDSL. Since the VPN traffic is not essential, I would prefer to have it always go out the cable connection, thereby keeping traffic off my primary ISP. However, I don't see anywhere in the Wireguard configuration where I can specify a WAN gateway. Is it possible to set it so that it only goes out one specific ISP gateway (and just drops the VPN connection entirely if that ISP is down)?

      Thank you.

      Bob.DigB 1 Reply Last reply Reply Quote 0
      • Bob.DigB
        Bob.Dig LAYER 8 @Lugie
        last edited by

        @Lugie No. You will have to use OpenVPN for that fine control.

        1 Reply Last reply Reply Quote 1
        • L
          Lugie
          last edited by

          Thank you for the confirmation. Hopefully this option will turn up in a future version of Wireguard.

          1 Reply Last reply Reply Quote 0
          • S
            stiff
            last edited by

            I think it's possible. At least in the part that the VPN tunnel would be installed through a specific provider. It is necessary to register in static routes through which gateway the IP of the VPN provider is available.
            It's a pity you can't register a group of gateways in static routes, then your problem would be solved completely

            1 Reply Last reply Reply Quote 2
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.