Posted: Sat Nov 28, 2020 17:03 Post subject: Traffic not routing via wireguard tunnel
I am struggling to set uo a router as a Wireguard client.
I followed the guide in this forum and the tunnel gets established and I can ping the far end of it. HOwever any other traffic not explicitally for the tunnel's network address, does not get routed over it.
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Sat Nov 28, 2020 18:46 Post subject:
You have "Route Allowed IP's via tunnel" enabled? And "Allowed IPs" is either "0.0.0.0/0" or "0.0.0.0/1,128.0.0.0/1"?
For the next guy, what router? What dd-wrt build? What wireguard guide? Is the guide the one tagged as " Sticky: WireGuard (client) Setup guide (commercial providers)" in this forum? _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.
You have "Route Allowed IP's via tunnel" enabled? And "Allowed IPs" is either "0.0.0.0/0" or "0.0.0.0/1,128.0.0.0/1"?
For the next guy, what router? What dd-wrt build? What wireguard guide? Is the guide the one tagged as " Sticky: WireGuard (client) Setup guide (commercial providers)" in this forum?
Yes it's that guide and I route allowed IP's routed ticked and have 0.0.0.0/0 as allowed IP's. The router is WRT1900ACS. I have updated to the latest version of DD-WRT.
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Sun Nov 29, 2020 16:17 Post subject:
lleibovici wrote:
SurprisedItWorks wrote:
You have "Route Allowed IP's via tunnel" enabled? And "Allowed IPs" is either "0.0.0.0/0" or "0.0.0.0/1,128.0.0.0/1"?
For the next guy, what router? What dd-wrt build? What wireguard guide? Is the guide the one tagged as " Sticky: WireGuard (client) Setup guide (commercial providers)" in this forum?
Yes it's that guide and I route allowed IP's routed ticked and have 0.0.0.0/0 as allowed IP's. The router is WRT1900ACS. I have updated to the latest version of DD-WRT.
In this forum, it's best to never say "latest" build as that changes from day to day. Also, many newcomers say "latest" incorrectly to mean whatever is in the router database, which is simply wrong. For your router, the database probably says 40559, a poor build that is getting a bit old now. The current latest is 44863. (See the Cliff Notes sticky at the top of the Marvell forum if you aren't familiar with where these new builds actually live.) Based on community experience -- see the new-build threads in the Marvell forum -- the latest for these WRT routers that is widely regarded as pretty solid and free of major issues is 44048.
You probably DO mean one of the recent builds, as I don't think 40559 even had wireguard yet. But I'm more or less just nudging the conversation towards having the background info posted for when @egc, the wireguard guru around here, gets back online. (He's been sidelined a couple of days with some minor surgery.) _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.
Thank you
The release I have installed is: DD-WRT v3.0-r44863 std (11/24/20)
I have deleted the tunnel and recreated it using (as suggested) "0.0.0.0/1, 128.0.0.0/1" as allowed IPs and it works.
I must admit I don't really understand why. - More digging I think.
But I'm grateful for the help.
