Posted: Mon May 15, 2023 17:38 Post subject: [Solved] Wireguard R6400v2 R52509 lost VPN connection
I upgraded my Netgear R6400v2 router to R52509 and lost my Wireguard to NordVPN using Tunnels. I rebuilt the conf file from nordLynx using my Raspberry Pi to log into NordVPN and create the config file. I went to basic tab / tunnels and imported the configuration. Added peer and removed peer tried all the notes I have on the original set up (late 2022 successful) I havent seen a new support file with this combination. NordVPN is a good VPN but the support for Wireguard protocol is crazy. I know I must be missing some tiny crumb but I have been battling this for a few days and now I need to ask for help. My network for the VPN is 10.0.21.1 I have PiHole running to support the DNS ad blocking. I hope someone can point me to the wireguard set up for the insane, at this point. Most are using the OpenVPN protocol. With wireguard I went to +150 Mb from about 10Mb (40Mb max) with OpenVPN.
Last edited by MaxiHP on Fri May 19, 2023 11:57; edited 1 time in total
Posted: Tue May 16, 2023 15:53 Post subject: Wireguard R6400v2 R52509 lost VPN connection
I have checked all these links and still cant get the VPN to connect. I removed the PiHole as sometimes this is an issue. I have attached the Config file and the image of the basic tunnel router page to show the information and where it lands on the tunnel. I feel dumb since I did not back up the config before I updated the application. Total beginner mistake... Since I can connect to WG on my PiHole I configured (following the guide) I don't know where the cliff is that I'm falling off. I may just need to do the nuclear option I am trying to prevent this for now.
My few pointers, unclear in your post so:
Listen port must be different on each tunnel, not sure if your only running 1 tunnel or not.
If running OpenVPN on the same router you must use PBR.
Your USA public key looks wrong to me, with Nord the public key changes per country. _________________ Netgear R7800 PPPoE Main Router
Dynalink WRX36 under test to replace R7800
Network IPV4 - Isolated Vlan's with IoT Devices. Unifi AC-Pro x 3 AP's, Router Wi-Fi Disabled. OVPN Server With Paid Commercial Wireguard Client's. Gateway Mode, DNSMasq, Static Leases & DHCP, Pi-Hole DNS & Running Unbound.
No one can build you the bridge on which you, and only you, must cross the river of life!
Posted: Wed May 17, 2023 14:36 Post subject: Wireguard R6400v2 R52509 lost VPN connection
Thank you for your suggestions I updated the allowed IP's and do not run the OpenVPN in my network. I have a vpn solution using the PiHole with PiVPN to get back in my network. At first the PBR through me for a loop as I am an old timer and PBR = Pabst Blue Ribbon not Policy Based Routing. Got excited to know I needed to have beer to make this work... Enough beer then I dont care if it works or not.
Not sure how important this is as the update added PBR I am running this on a different router the primary gateway is on the Netgear R7000 V3.0 R51530 10.0.20.1/24 and the VPN gateway Netgear R6200v2 (Wan ip 10.0.20.253) is 10.0.21.1/24 and IOT gateway Netgear R7000 V3.0 R50500 (Wan ip 10.0.20.252) is on 10.0.22.1/24 all worked up to the point I updated Netgear R6200V2 router from R50551 to R52509.
PBR settings are
route all sources via VPN
route all destinations via default router
Posted: Thu May 18, 2023 10:38 Post subject: Wireguard R6400v2 R52509 lost VPN connection
Found the issue the firewall rule that states iptables -t nat IPOSTROUTING-s 10.5.0.2/32-o $(nvram get wan_iface)-j MASQUERADE and the Wireguard tunnel IP address/netmask (CIDR) must be equal. This was out of wack one had 10.2.0.0/24 and the other 10.5.0.2/32 I set them both to 10.5.0.2/32 from the config file and then it connected. Thanks again for your help just in case someone else runs into this it is a crumb that I at least chewed on.
I dont know how to close this post but my issue is finished