routing ipsec /wireguard
-
Hi.
i have a setup with a netgate 4100 and 2100 linked via ipsec tunnel.
Traffic between these two works fine.I also have a wireguard server for mobile units on the 4100.
I am unable on reach anything via the ipsec tunnel when on wireguard.
What am i missing? -
Anyone who can help?
-
@betahelix Did you add the 2100 subnet as allowed in wireguard?
-
@jarhead ive set 0.0.0.0 as allowed. so everything should be allowed
-
@betahelix So then you'll have to add the wireguard tunnel network to the 2100's ipsec.
-
@jarhead I have now added the following as phase2 on 2100 (remote site)
192.168.10.0/24 (LAN on primary site)
172.16.16.0/24 (Wireguard lan)
192.168.70.0/0 (OpenVPN lan)Still no traffic between anything.
-
@betahelix So now there's an OpenVPN tunnel too?
Can you show the actually topology of both sites?
When I have VPN issues I always use the Packet Capture under Diagnostics menu. Try that on the 2100 while pinging from the WireGuard clients.