Wierd firewall issue in wireguard
-
Hello! I have a site-to-site vpn using wireguard between 2 pfsense machines. They are connected using the subnet 10.65.105.0/30. PfSense A is in my home, and PfSense B is at my VPS. PfSense A has the ip 10.65.105.1 and PfSense B has 10.65.105.2.
I use FRR OSPF between and no static routes. OSPF works fine and they detect each other. Now comes the weird problem. I can send traffic from A to B, but not the other way around. My rules on both sides look like this:
If i ping 172.16.15.253 from site B (172.16.15.253 is at site A), the pings fails, if i look in the packet capture of the wireguard interface i can see the traffic. But the traffic never comes out of the lan interface where 172.16.15.253 is.
So the traffic does indeed reach PfSense A from PfSense B, but somewhere in PfSense A the traffic drops/dissapears.
Another wierd thing is that PfSense B can ping PfSense A's ip address and vice versa, so traffic at the 10.65.105.0/30 subnet works fine.
What is happening here?
-
@DnetSystems said in Wierd firewall issue in wireguard:
FRR OSPF
I have no clue about that. But what is your allowed IPs look like.
-
@Bob-Dig Allowed ips are 0.0.0.0/0 on both sides.
