Wireguard oddness
-
I’m currently running 21.05 RC on an SG-5100 and have really enjoyed the Wireguard package so far. I restarted my box today after updating to the latest RC and had no internet connection once it came back up. I could log in but had no internet connectivity. I have a wireguard site to site connection set up, a remote access wireguard connection, and a Mullvad connection that I use to bulk route all my internet traffic except for a few exceptions.
According to the wireguard status, the site to site and Mullvad were connected, but I could not access to remote network or internet. The only way I was able to get things to work was to disable the Mullvad interface and then re-enable it. Things almost immediately started working again. I’ve done this a couple times now just to ensure that it is a real issue and not just a fluke. I am running the latest package available:
Package Versions
Name Version Comment
pfSense-pkg-WireGuard 0.0.8 pfSense package WireGuard (EXPERIMENTAL)
bash 5.1.4_2 GNU Project's Bourne Again SHell
wireguard-kmod 0.0.20210502 WireGuard implementation for the FreeBSD kernel
wireguard-tools 1.0.20210424 Fast, modern and secure VPN TunnelHappy to try to troubleshoot if someone has specific things they need me to do. I haven’t been able to find anything that suggests this is a known issue but apologize if I’ve missed a thread or bug report.
Thanks!
-
@gabacho4 I am running this Wireguard package:
https://github.com/theonemcdonald/pfSense-pkg-WireGuard/releasesI have not experienced any downtime at all regarding Wireguard towards Mullvad since installed five days ago. This is version 0.1.1_1, so maybe switching to that one would solve your problem?
Troubleshooting experimental versions when there are newer doesn't feel as time well spent. -
@talisker I agree on the value of troubleshooting older versions, however, that's the version available in the package that Netgate out into the repository. I could always try to update separately but have a couple questions.
The github wiki mentions running a script to add the repo for the package however there isn't a mention of 21.0x rather only 2.6. Is it safe to use that repo for 21.05 RC?
Would I need to uninstall the Netgate package and then install the repo?
Any other tips?
I'd really like not to mess up my installation if at all possible.
-
@gabacho4 Hmm, I don't know. I am running the 2.5.1-RELEASE (amd64) and have when I updated the wireguard version, I had to uninstall the previous package and add the new 0.1.1_1. The Wireguard configuration was however kept intact and I did not have to make any changes at all when I removed the 0.0.9.
Since you seems to be running an RC I don't know if it'll work...
-
@gabacho4 Please try v1.1 which is now on the Netgate repository :)
-
@theonemcdonald I've just checked and do not see an update to the Wireguard one. I'd gladly run the latest but it's not showing up for me on 21.05 RC. Thoughts?
-
@theonemcdonald Well I tried removing the package to see if the newer version would show up when I went to reinstall. It did not. My guess is that Netgate hasn't rebuilt a package with the new version.
However, despite having things set to retain settings upon uninstall/reinstall, I lost all of them. Fortunately I had a backup and was able to restore. Something is not working right for sure on that front.
