Posted: Wed Jan 11, 2023 19:35 Post subject: Wireguard issue with IPv6 address as endpoint
Hi all and best wishes for 2023,
I am using DDWRT 51043 build on Archer C9 V1 and everything works fine with that build.
Later builds are however not connecting to the Wireguard peer.
I guess it as something to do with IPv6 implementation for Wireguard added in between.
Traceroute to the endpoint address is erroring. I tried to force that adress to go through WAN by using destination routing setting without success.
Any idea what should be set to use IPv6 endpoint on newer builds ?
Nope, ISPs in France and some other European ISP are using CGNAT now, which means you do not have a full IPv4 anymore and you have no control over opened ports as IP is shared between customers.
If I had the choice I would not use an IPv6 endpoint to host my WG server but no other option sadly. I will stick to pre 51058 releases which are working fine waiting for a complete implementation in the future.
Joined: 18 Mar 2014 Posts: 12835 Location: Netherlands
Posted: Wed Jan 18, 2023 12:54 Post subject:
For using WireGuard as a server the *next* public build might work again when using IPv6 at least it does for me.
The problems you encountered are possibly firewall related, the IPv6 firewall has had a major overhaul but was a bit to restrictive.
The latest patch: https://svn.dd-wrt.com/changeset/51364 was hopefully the last which was necessary.