• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Wireguard on PF has defeated me

Scheduled Pinned Locked Moved WireGuard
3 Posts 3 Posters 1.1k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • X
    xxGBHxx
    last edited by Nov 19, 2021, 3:26 PM

    OK I'm defeated.

    Further to my issues Here I just checked one of my connections and it was inexplicably down again while the other was up. Checked a whole bunch of stuff and nothing would bring it back up. Restarted the firewall and then neither WG VPN would come up despite doing nothing but rebooting.

    As before I then reconnected my OpenVPN VPN, deleted Wireguard completely, re-installed and still neither WG vpn would work.

    I've now removed WG completely and I'm on OpenVPN again.

    When and if you get WG working it seems great and indeed I've been connected for a month or more without a single issue. But in my setup, at least, if I so much as look at it a bit funny it drops and I just can't get it back up again.

    I wish I could say it was my ISP or the VPN vendor but this is via 2 unrelated ISP's to two unrelated VPN vendors. Both vendors support WG through their desktop and mobile apps and I can connect to them, flawlessly every time and they never drop on the exact same ISP links.

    pfSense on VMWare in my environment just isn't stable.

    Also the lack of ANY debug information from WG whatsoever along with no ability to turn logging on drives me mental. The best I can see is the packet count going up but there's just nothing else anywhere. I appreciate that may be by design, that there's nothing much it can report or that it should "just work" but it's infuriating. At least OpenVPN has a fully configurable level of logging which makes troubleshooting it simple.

    WG seems great in other apps and I've used it for months flawlessly without a single issue but for me, in PF it's just not working.

    G

    C 1 Reply Last reply Nov 19, 2021, 4:29 PM Reply Quote 0
    • C
      cmcdonald Netgate Developer @xxGBHxx
      last edited by Nov 19, 2021, 4:29 PM

      @xxgbhxx send me a DM, I'd like to investigate this with you.

      Need help fast? https://www.netgate.com/support

      1 Reply Last reply Reply Quote 0
      • G
        gjaltemba
        last edited by Nov 20, 2021, 2:00 PM

        I feel you because I am dealing with a similar situation with pf wireguard. PIA is my VPN provider. Their linux app on ubuntu VM runs fine. PIA also has a tool to generate wireguard conf file to work with wg-quick on ubuntu. No problem.

        I generate the details in my ubuntu wireguard conf and enter the info in pf gui. Mapping is private key for tunnel. Endpoint and public key for peer. Address for opt interface and routing.

        The pf wireguard peer does not always handshake. The first time pf wireguard connected to PIA it was perfect. The connection dropped after 2 weeks. Now the connection has long ping times and very slow.

        Is there a way to automate mapping linux wireguard conf to pf wireguard tunnel and peer conf?

        1 Reply Last reply Reply Quote 0
        3 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received