Treees DD-WRT Novice
Joined: 05 Feb 2020 Posts: 16
|
Posted: Tue Apr 27, 2021 2:53 Post subject: [R7000] Wireguard Client to Cloudflare Warp |
|
I have an R7000 in Client Mode. I configured the router to use Wireguard as per egc's (?) guide. The router picks up an IPv6 IP, and shows the connection goes through.
But I have IPv6 on the router disabled and even though the WG client shows connected, I have no internet on clients connected to the router.
I do not think it has anything to do with the router being in Client Mode, because br0 is still the main source.
Am I missing something here?
This is the conf on WG:
Code: | [Interface]
PrivateKey = SOME_PRIVATE_KEY
Address = 172.16.0.2/32, fd01:5ca1:ab1e:83ff:ff76:fc3b:50e4:bbd8/128
DNS = 1.1.1.1
[Peer]
PublicKey = SOME_PUBLIC_KEY
AllowedIPs = 0.0.0.0/5, 8.0.0.0/7, 11.0.0.0/8, 12.0.0.0/6, 16.0.0.0/4, 32.0.0.0/3, 64.0.0.0/2, 128.0.0.0/3, 160.0.0.0/5, 168.0.0.0/6, 172.0.0.0/12, 172.32.0.0/11, 172.64.0.0/10, 172.128.0.0/9, 173.0.0.0/8, 174.0.0.0/7, 176.0.0.0/4, 192.0.0.0/9, 192.128.0.0/11, 192.160.0.0/13, 192.169.0.0/16, 192.170.0.0/15, 192.172.0.0/14, 192.176.0.0/12, 192.192.0.0/10, 193.0.0.0/8, 194.0.0.0/7, 196.0.0.0/6, 200.0.0.0/5, 208.0.0.0/4, 8.8.8.8/32
Endpoint = engage.cloudflareclient.com:2408
|
The allowed IPs is set so things like LAN, Plex, Teamviewer, etc, can exist over LAN.
This is what the "wg showconfg oet1" command returns:
Code: |
0;root@ZZ: ~root@ZZ:~# wg showconf oet1
[Interface]
ListenPort = 51820
PrivateKey = SOME_PRIVATE_KEY
[Peer]
PublicKey = SOME_PUBLIC_KEY
AllowedIPs = 0.0.0.0/1, 128.0.0.0/1
Endpoint = 162.159.192.1:2408
PersistentKeepalive = 25
|
And proof of pulling IP:
Is there an easy way to fix this? |
|
egc DD-WRT Guru
Joined: 18 Mar 2014 Posts: 12883 Location: Netherlands
|
Posted: Tue Apr 27, 2021 9:14 Post subject: |
|
Not entirely sure what you are trying to do.
Have you setup a Cloudflare WG VPN server and are trying to connect to it from DDWRT?
You are specifying an IPv6 address but also stating that you have IPv6 disabled?
You are using a lot of Allowed IP's to setup static routing although not wrong (if not more than 1024 character in the allowed IP field) usually using PBR is the easier choice.
But you show only allowed IP's 0.0.0.0/1,128.0.0.0/1?
You are mentioning Client mode as in the router has its own subnet so one of the radio's is functioning as the WAN ( https://wiki.dd-wrt.com/wiki/index.php/Client_Mode ) ?
On page 18 of the WireGuard Server setup guide is a list with things we need to know to troubleshoot, have a look and provide the necessary information.
Pictures no more than 768 pixels width according to the forum guidelines:
To get the best out of DDWRT and the forum read the forum guidelines with helpful pointers:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
As this subject is not router specific I have transferred it to the Advanced Networking forum _________________ Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Last edited by egc on Wed Apr 28, 2021 10:57; edited 1 time in total |
|
egc DD-WRT Guru
Joined: 18 Mar 2014 Posts: 12883 Location: Netherlands
|
Posted: Tue Apr 27, 2021 11:56 Post subject: |
|
WireGuard has seen some changes so as a quick test I set up Client mode on 2,4 GHz and the WAN was correctly identified as eth1 and WireGuard was working as intended to my provider (keepsolid). _________________ Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087 |
|