Site-to-Site VPN with WireGuard
-
This is a complicated situation, but I'm wondering if I can use my Netgate XG-1541 to do this...
I have 2 homes both with Ubiquiti UDMs as their consoles (main home with a UDM-SE, second home with a UDMP). I would like to bridge the two homes so the second home seems like devices connected to it are at the main home. My primary reason for this is local discovery of devices (printers, TVs, Sonos, etc.).
Can I do this with 2 Netgate XG-1541s and get 1G throughput with WireGuard? The UDMs have a built-in site-to-site VPN but I'm only managing 300-500 Mbps max.
If this is possible, how would I go about configuring this without the pfSense routers being my primary router? I currently have OpenVPN on the Netgate XG-1541 that works fine. I have subnet 10.0.8.0/24 with static routing for everything on that subnet to go through 10.0.1.17 (the IP of my pfSense box). I would want the other site to automatically connect after power outages, firmware upgrades, reboots, etc.
-
@ericnix well Sonos or most local discovery mechanisms require multicast(mDNS), no?
What’s your plan on getting that across?
In the most complicated way all of this could work with Source and Destination NAT. -
@michmoor I may not be able to get Bonjour and mDNS across the VPN, but I do want to try to maximize throughput.
-
One of the reasons I was wanting to implement this was so I could use a TiVo Mini to get recordings from the TiVo Edge DVR at my main home.
Is there a way to implement this where it would work?
-
@ericnix What your asking for would need a tap vpn, Wireguard is tun only so, no, it'll never work with Wireguard.
-
@jarhead Thanks for clarifying that. I guess it's not possible with WireGuard. I know I can do it with OpenVPN, but throughput is not that great.