Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Wireguard Logs Location?

    Scheduled Pinned Locked Moved WireGuard
    5 Posts 2 Posters 8.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      Neosmith20
      last edited by

      So, I've been having problems with my wireguard disconnecting from a vpn provider, let's call them "vpn1") after a few "random" hours of use and I have been searching around the log files, but don't really see anything that can point me to what is going on.

      I contacted the vpn provider(vpn1), but they are saying that they can't find an issue on their end.

      Is there somewhere that has more info that can show me what is going on with the wireguard, log wise?
      So, I can send them more information, or fix it, if it's on my side.

      I keep having to redo the config, from their website(vpn1), to get it back up. When I redo the config, and get all the information updated on the pfSense wireguard, it comes up fine. But then, after a few random hours of use, it goes down again.

      I have a second vpn provider(let's call them "vpn2"), and have that config on my wireguard as well on the "router", but that one hasn't gone down during the same time I have been running the first vpn setup.

      Some info... I'm running pfSense+ Version: 23.05.1-RELEASE
      Wireguard Package Version: 0.2.0_2
      I've also tried reinstalling wireguard, but that didn't help to keep (vpn1) up/active.

      Why it matters: I would like to get the (vpn1) provider stable as it's a paid personal server and have had that vpn provider for quite some time now without problems. If I use their app it works fine, but when using it with the wireguard on my "router" it's not staying up/active.

      What's really odd is when I select a different location for (vpn1), and put that config information into the "router"', it seemed to stay up, vs using my personal server. To me, that say's that it's the server, but I wanted to see if there was anything, log wise, that is saying when/how it's going down/inactive.

      JustAnotherUserJ 1 Reply Last reply Reply Quote 0
      • JustAnotherUserJ
        JustAnotherUser @Neosmith20
        last edited by JustAnotherUser

        @Neosmith20

        VPN >> WireGuard >> Tunnels >> Edit >> Firewall Configuration >> Rule Edit :

        "Log
        Log packets that are handled by this rule Hint: the firewall has limited local log space. Don't turn on logging for everything. If doing a lot of logging, consider using a remote syslog server (see the Status: System Logs: Settings page)."

        I haven't actually turned this on but, there's a start.

        wireguard disconnecting from a vpn provider ... after a few "random" hours of use

        Did you try enabling Keep Alive?

        VPN >> WireGuard >> Peers >> Edit Peer >> Keep Alive

        N 1 Reply Last reply Reply Quote 1
        • N
          Neosmith20 @JustAnotherUser
          last edited by Neosmith20

          @JustAnotherUser said in Wireguard Logs Location?:

          Did you try enabling Keep Alive?

          Yeah, I have it set to 25 per the (vpn1) provider's config. But, I have changed it to lower amounts, just to see if it would work, but that didn't seem to make a difference.

          I will also turn the "log packets" on to see if that will show anything.

          JustAnotherUserJ 2 Replies Last reply Reply Quote 1
          • JustAnotherUserJ
            JustAnotherUser @Neosmith20
            last edited by JustAnotherUser

            @Neosmith20

            25 seconds seems real aggressive... I'm not saying that it's wrong, it just sounds excessive to me. I have mine set for several minutes.

            I'd also run a ping on your provider's IP and see if you're having disconnection issues. Make a script so that when a VPN ping fails, you automatically ping the provider's IP.

            1 Reply Last reply Reply Quote 1
            • JustAnotherUserJ
              JustAnotherUser @Neosmith20
              last edited by JustAnotherUser

              @Neosmith20

              Lastly, if you look in:

              Status >> System Logs >> System >> General

              And filter on "ireguard" (and then filter again on "WG0" (or whatever you named your interface)), you will see some of the logs.

              (My personal experience has been that those log entries have been pretty useless)

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.