I've entered my DDNS address and DDWRT accepts it, yet when I scan the QR code with my phone, the config still has my WAN IP. _________________ Netgear R7800
DD-WRT v3.0-r51011 std (12/12/22)
I've entered my DDNS address and DDWRT accepts it, yet when I scan the QR code with my phone, the config still has my WAN IP.
I am not sure what you are doing.
You scan the QR code on the WireGuard server for that particular peer, there is no endpoint for a servers peer that is when you setup a WireGuard client not a servers peer.
A servers peer has no endpoint.
The QR code makes an endpoint to reach your server which is the servers WAN IP address.
Of course that is not always right ( I have an internal server ) or you do not want the WAN ip address if you have a dynamically allocated IP address and so you have to adapt it to your liking as described in the documentation _________________ Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399 Install guide R7800/XR500:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614 Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Mon Apr 12, 2021 17:39 Post subject:
@egc said it, but I'll say it again so he doesn't have to. The Endpoint is for the server IP when you are setting up a client. I use wireguard as a client to connect to an AzireVPN server, so I put the IP of their server in that spot. For a server, which you seem to be trying to set up, you leave the field empty.
Notice there are no server and client buttons in the dd-wrt wireguard setup. Wireguard is inherently symmetric. So all the fields you'd need for either application are there. Some will stay empty. _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.
I have the DDWRT Wireguard server, and I have clients that connect to it. How do I make the QR codes in DDWRT tell my clients to connect to DDNS address (mydyndnsaddress.net) instead of my WAN IP? _________________ Netgear R7800
DD-WRT v3.0-r51011 std (12/12/22)
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Mon Apr 12, 2021 18:16 Post subject:
unknownsoldierx wrote:
I have the DDWRT Wireguard server, and I have clients that connect to it. How do I make the QR codes in DDWRT tell my clients to connect to DDNS address (mydyndnsaddress.net) instead of my WAN IP?
I use the iOS wireguard app in my phone, and once it's set up with the QR code, I just push the edit button and edit the configuration a little. I replace the Endpoint IP address (in the phone!) with the foo.bar.com domain name that the DDNS has made point to dd-wrt's actual IP address. Works great. _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.
I use the iOS wireguard app in my phone, and once it's set up with the QR code, I just push the edit button and edit the configuration a little. I replace the Endpoint IP address (in the phone!) with the foo.bar.com domain name that the DDNS has made point to dd-wrt's actual IP address. Works great.
But you previous wrote:
Quote:
The Endpoint is for the server IP when you are setting up a client.
What can't we enter 'foo.bar.com' there so we don't have to manually edit the config on our devices? _________________ Netgear R7800
DD-WRT v3.0-r51011 std (12/12/22)
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Mon Apr 12, 2021 19:34 Post subject:
There's a good reason: because Endpoint IP always means the IP of the OTHER END of the connection from where we are editing. _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.
Not sure why where the editing takes place matters.
The endpoint for my peers would be my router. The QR code is already passing along my WAN IP to those peers, so why shouldn't there be an option to take DDNS into account and have the QR code pass that address along instead? _________________ Netgear R7800
DD-WRT v3.0-r51011 std (12/12/22)
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Mon Apr 12, 2021 23:05 Post subject:
Getting outside my knowledge zone a bit here, but I believe the QR code for this is a part of the wireguard standard and not something the dd-wrt implementers have that level of control over. In our example, both dd-wrt and the WireGuard iOS/Android app would have to have shared knowledge of how this information is encoded. So talk to the WireGuard project I suppose. Keep in mind that part of the WireGuard philosophy is minimalism, not loading the system with all sorts of bells and whistles. It's why the wireguard code is about 1% the length of the OpenVPN code. _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.