Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Wireguard tunnel as WAN interface?

    Scheduled Pinned Locked Moved WireGuard
    3 Posts 2 Posters 471 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bilm
      last edited by

      Hello,

      On a self-hosted server installed with the proxmox hypervisor, I want to host various services on virtual machines in a LAN.
      I want to configure a pfSense VM to protect my services on the LAN.
      The public IP giving access to my services will be provided via a Wireguard VPN.

      Here's a diagram describing the configuration I want to set up:
      alt text

      I've already tried to create a tunnel and a peer wireguard with information from my VPN provider. Here are some screenshots of this configuration
      alt text
      alt text

      The tun_wg0 tunnel seems functional according to the wireguard status:
      alt text

      Then I tried to assign the tun_wg0 tunnel as a WAN interface, but now I'm losing access to the net from a VM on the LAN ...

      How can I find out what the problem is?
      Is the way I want to configure my network the right one?

      Thanks
      bilm

      Bob.DigB 1 Reply Last reply Reply Quote 0
      • Bob.DigB
        Bob.Dig LAYER 8 @bilm
        last edited by

        @bilm said in Wireguard tunnel as WAN interface?:

        Then I tried to assign the tun_wg0 tunnel as a WAN interface

        Don't do that. Instead search for policy based routing on pfSense with Wireguard.

        B 1 Reply Last reply Reply Quote 1
        • B
          bilm @Bob.Dig
          last edited by bilm

          @Bob-Dig Thanks !!!

          After some research on policy based routing, I managed to give Internet access to a vm on my LAN using this tutorial as inspiration : https://protonvpn.com/support/pfsense-wireguard/

          now I'll try to configure haproxy to expose the services of the vm on my lan !

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.