Clues
The first iOS WG connections of the day always run great, but only for a few minutes.
Each successful connection runtime thereafter gets progressively shorter and shorter.
Then no handshake at all.
Peer logs will say connected, but handshake responses are not received.

Also, the first successful iOS connections will show data sent/received.
Thereafter, only sent data is shown when I initiate WG.

I would have to wait a few hours before I can get a complete handshake again.
Then the same cycle repeats itself.

The WG interface on "pfSence Interface Statistics" shows 0 Errors In and 443 Errors Out.

Repair attempts
I've tried various suggested MTU/MSS settings (1428, 1280, 1450) on iOS and router interface but they have no affect.

Restarting WG on pfSence has no effect.

A lot of web searches were conducted and I found people with the same complaints but there are no solid solutions, so I would like to get a better understanding of pulling TCPDUMP logs from my WG interface. Then I can try to dig further and find more clues.

The ask
I know how to do this via SSH but exactly what tcpdump syntax should I use?
And maybe this is too general of a question, what anomalies should I look out for?

Best,
Chris

pfSense 2.6.0
Snort
pfBlockerNG
Avahi for IOT