Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Transit WG routing issue

    Scheduled Pinned Locked Moved Routing and Multi WAN
    2 Posts 2 Posters 885 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M Offline
      meray
      last edited by meray

      I am trying to set up a Transit VPN from A to C over B, so A↔B↔C. I am using WireGuard and the connections A↔B & B↔C are working, just not transitively A↔C. Everything else is explained in the diagram below, does anybody have any idea what could be going wrong?
      VPNNet.drawio.png

      patient0P 1 Reply Last reply Reply Quote 0
      • patient0P Offline
        patient0 @meray
        last edited by

        @meray to recap:

        • on A you got routes to BNet and VNet using wgB as gatway
        • on B you got a route to VSub using wgB as gateway
        • on B you got a route to ANet using wgA as gateway
        • wgA, wgB and wgC have route/access to VNet
        • wgB and wgC have also route/access to VSub (a subset of VNet)
        • for wgA, peer B you set AllowedIPs to BNet, wgB and VNet (but not wgC?)

        Questions:

        • are the Wireguard endpoints assigned as interfaces in pfSense?
        • are you doing NAT on Wireguard traffic?
        • is C -> B -> A working and only A -> B -> C not?
        • wgA has direct connection to VNet, why set the gateway to wgB?
        • is there a route to wgC on A?
        • what firewall rules have you set up for Wireguard?
        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.