Posted: Thu Nov 27, 2025 5:48 Post subject: Roaming Wireguard client - no handshake question
@egc could use your expertise sir.
I have an R9000 I've completely wiped and re-configured which is now running r62778. I have 2 tunnels configured oet1 and oet2. oet1 is a site-to-site setup which is working just fine. oet2 however, which is literally for roaming devices (like my iphone) is not.
oet1 listens on 51810
oet2 listens on 51820
I originally tried just setting up another client peer on oet1 and that didn't work either, so I created a new server oet2.
I've done a TCPdump and I can see the traffic hitting the router, but it will not handshake.
oet2 Server config
oet2 Client Peer Config
Firewall Rules
iPhone WG Config:
Code:
INTERFACE
Name: home network
Public key: Mlzo9**************************
Addresses: 10.5.0.2/32
Listen port: Automatic
MTU: Automatic
DNS servers: 192.168.3.1
It's best to remain on the Linux 4.9 builds for now until things are sorted.
Crap - Since I literally, just wiped and rebuilt this thing all day yesterday.... does that mean I have to do it again? I'm afraid if I take a backup of my config, and then flash and revert to an older build, i'm gonna corrupt the thing...
Take the advice of @ kernel-panic and just set up according to the wireguard server setup guide and you should be good.
You mean on the current build I’m on now or after I downgrade? I have it configured exactly as the guide recommends now. The only difference is I tried adding firewall rules when it didn’t work.
