Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfSense Wireguard Site-to-Site, routing issues??

    WireGuard
    3
    4
    101
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      conQureo
      last edited by

      Hello guys, I’m familiar with pfsense just for 2-3 months. Before telling my problem, tell you guys my map.
      Here, I have a HQ site, which installed many repeater device for communication system. All repeaters have internal ip addresses, 192.168.33.0/24, they are connected each other microwave system. On the main server, I can collect all data and I can monitore the all repeater devices via special software programme. This software program just listen the interface of repeaters, I mean software listen the 192.168.33.0/24 ip addresses and detect the device’s ip and add to itself.

      Untitled.jpg

      Also, I have a other repeater device far away from HQ site. I want to added this mobile repeater device to the HQ software program. So I used the pfSense wireguard tunnel. I set all parameters for tunnels and set to rules for lan-wan and wireguard to any. I let all traffics pass.
      Shortyl, tunnels up and I can ping from HQ site to mobile site via pfSense console.
      Mobile repeater device has the ip address 192.168.6.151/24 and gateway is the 192.168.6.150, same the pfSense lan ip. In HQ site, all repeater devices have 192.168.33.0/24 ip and gateway is 192.168.33.1, same hq site pfSense ip.

      So, To add the mobile device’s ip address to the HQ site to windows, I added route. It’s;
      route add 192.168.6.0 mask 255.255.255.0 192.168.33.1
      I say the 192.168.6.0 ip addresses pass through the 192.168.33.1 gateway.
      With cmd on windows, I can ping to the mobile device which 192.168.6.151. But The software programme doesn’t detect the mobile device in the HQ site. So I check coming packets of the interface via Wireshark, There is no any packest from 192.168.6.0 subnet.
      What should I do?

      chpalmerC 1 Reply Last reply Reply Quote 0
      • chpalmerC
        chpalmer @conQureo
        last edited by chpalmer

        @conQureo I do radio for a living but have not had a chance to work with this type of system..

        My belief though based on a system we use where I work now is that this needs to work with multicast or unicast..

        My guess is that the PIMD package might be your go to if this is the case.

        https://docs.netgate.com/pfsense/en/latest/vpn/wireguard/routing.html#dynamic-routing

        "If a routing protocol relies on broadcast or multicast traffic, it is unlikely to work." (thanks @dennypage )

        Which brand of repeaters are you working with?

        Triggering snowflakes one by one..
        Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

        G 1 Reply Last reply Reply Quote 0
        • G
          Gblenn @chpalmer
          last edited by

          @chpalmer said in pfSense Wireguard Site-to-Site, routing issues??:

          My belief though based on a system we use where I work now is that this needs to work with multicast or unicast..

          @conQureo Avahi plugin might work for you here. Not sure if you need to install it on both sites, never used it over VPN but it works perfectly fine across VLAN to discover Printers for example.

          1 Reply Last reply Reply Quote 0
          • chpalmerC
            chpalmer
            last edited by

            https://forum.netgate.com/topic/151871/solution-for-multicast-over-tunnel

            Triggering snowflakes one by one..
            Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.