Posted: Mon May 15, 2023 17:38 Post subject: [Solved] Wireguard R6400v2 R52509 lost VPN connection
I upgraded my Netgear R6400v2 router to R52509 and lost my Wireguard to NordVPN using Tunnels. I rebuilt the conf file from nordLynx using my Raspberry Pi to log into NordVPN and create the config file. I went to basic tab / tunnels and imported the configuration. Added peer and removed peer tried all the notes I have on the original set up (late 2022 successful) I havent seen a new support file with this combination. NordVPN is a good VPN but the support for Wireguard protocol is crazy. I know I must be missing some tiny crumb but I have been battling this for a few days and now I need to ask for help. My network for the VPN is 10.0.21.1 I have PiHole running to support the DNS ad blocking. I hope someone can point me to the wireguard set up for the insane, at this point. Most are using the OpenVPN protocol. With wireguard I went to +150 Mb from about 10Mb (40Mb max) with OpenVPN.
Last edited by MaxiHP on Fri May 19, 2023 11:57; edited 1 time in total
Posted: Tue May 16, 2023 15:53 Post subject: Wireguard R6400v2 R52509 lost VPN connection
I have checked all these links and still cant get the VPN to connect. I removed the PiHole as sometimes this is an issue. I have attached the Config file and the image of the basic tunnel router page to show the information and where it lands on the tunnel. I feel dumb since I did not back up the config before I updated the application. Total beginner mistake... Since I can connect to WG on my PiHole I configured (following the guide) I don't know where the cliff is that I'm falling off. I may just need to do the nuclear option I am trying to prevent this for now.
My few pointers, unclear in your post so:
Listen port must be different on each tunnel, not sure if your only running 1 tunnel or not.
If running OpenVPN on the same router you must use PBR.
Your USA public key looks wrong to me, with Nord the public key changes per country. _________________ Main Router: Dynalink WRX36, PPPoE, Gateway Mode, Network IPV4 - Isolated Vlan's. Unifi AC-Pro x 3 AP's, Router Wi-Fi Disabled. Paid Commercial Wireguard Client's & WG server, DNSMasq, Static Leases with Quad9 SmartDNS, DNSMasq Adblocking thanks to egc script.
No one can build you the bridge on which you, and only you, must cross the river of life!
Posted: Wed May 17, 2023 14:36 Post subject: Wireguard R6400v2 R52509 lost VPN connection
Thank you for your suggestions I updated the allowed IP's and do not run the OpenVPN in my network. I have a vpn solution using the PiHole with PiVPN to get back in my network. At first the PBR through me for a loop as I am an old timer and PBR = Pabst Blue Ribbon not Policy Based Routing. Got excited to know I needed to have beer to make this work... Enough beer then I dont care if it works or not.
Not sure how important this is as the update added PBR I am running this on a different router the primary gateway is on the Netgear R7000 V3.0 R51530 10.0.20.1/24 and the VPN gateway Netgear R6200v2 (Wan ip 10.0.20.253) is 10.0.21.1/24 and IOT gateway Netgear R7000 V3.0 R50500 (Wan ip 10.0.20.252) is on 10.0.22.1/24 all worked up to the point I updated Netgear R6200V2 router from R50551 to R52509.
PBR settings are
route all sources via VPN
route all destinations via default router
Posted: Thu May 18, 2023 10:38 Post subject: Wireguard R6400v2 R52509 lost VPN connection
Found the issue the firewall rule that states iptables -t nat IPOSTROUTING-s 10.5.0.2/32-o $(nvram get wan_iface)-j MASQUERADE and the Wireguard tunnel IP address/netmask (CIDR) must be equal. This was out of wack one had 10.2.0.0/24 and the other 10.5.0.2/32 I set them both to 10.5.0.2/32 from the config file and then it connected. Thanks again for your help just in case someone else runs into this it is a crumb that I at least chewed on.
I dont know how to close this post but my issue is finished
