Does the GW IP matter?

McMurphy · Aug 21, 2024, 7:19 AM

I have a simple site to site WG VPN

SiteA = 172.16.0.1
SiteB = 172.16.0.2

As part of the pfSense config I need to create a GW at each site however I have discovered that no matter what value I specify for the GW the VPN keeps working correctly?

For example, on both pfSense boxes if I set the GW IP to 172.16.0.254 everything continues working.

Does the GW IP only need to be any value within the tunnel subnet?

chpalmer · Aug 22, 2024, 4:23 AM

@McMurphy

GW would only be important for traffic that was directed at an address that was outside of your subnet.

McMurphy · Aug 22, 2024, 4:23 AM

@chpalmer

Do you mean outside the tunnel subnet?

Technically if the VPN tunnel is used to connect separate networks then would all networks not be outside of my tunnel subnet?

I have used a dummy GW IP and am able to contact all networks?

chpalmer · Aug 23, 2024, 3:15 AM

@McMurphy said in Does the GW IP matter?:

SiteA = 172.16.0.1
SiteB = 172.16.0.2

These are both in the same network even if you had a /30

Do you have other interfaces i.e. LANs on these boxes? I assume you do. Yes you would be able to see at least both addresses from either box.

left to guess your layout nobody can really understand what your goal is.