Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WireGuard Config - Allowed IPs

    Scheduled Pinned Locked Moved
    WireGuard
    1
    3
    593
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E
      ericnix
      last edited by

      I've finally figured out how to set up WireGuard peers. I have a complicated situation in that my pfSense is a network device and is not performing routing capability. I have a static IP assigned to it (10.0.1.17).

      My VPN network is 10.0.25.0/24.

      When configuring the peer, I have allowed IPs set as 10.0.25.1/32, 10.0.25.(clientIP)/32, and 0.0.0.0/0 to force all traffic through the VPN.

      Should I set the router's VPN IP (10.0.25.1/32) to 10.0.25.0/24 or leave it as is? I want clients on the VPN to be able to see and communicate with each other.

      As usual, I probably am making this way more complicated than needed.

      1 Reply Last reply Reply Quote 0
      • E
        ericnix
        last edited by

        Also, does the Windows client not have an on-demand option?

        1 Reply Last reply Reply Quote 0
        • E
          ericnix
          last edited by

          I was able to get it figured out.

          WireGuard going through my Netgate XG-1541 even if on the LAN side with router being a UniFi UDM-SE seems much quicker than the UDM-SE providing WireGuard.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.