wireguard

I have the following setup: Internet <--> Gateway <--wireguard--> Router <--> Server I noticed that I get extremely bad performance for requests from the Internet to the Server, but the other way around, the performance is great. Weirdly enough, I also get good performance from Gateway to...

I have the following setup: Internet <--> Gateway <--wireguard--> Router <--> Server Now I noticed that while the speeds are great from Server to Internet, the speeds the other way around are atrociously bad. As a next step I disabled the firewalls on Gateway and Server, and ran iperf3. Here...

My setup is as follows: Gateway <--wireguard--> Router <--> Mailserver The wireguard is set up properly; Mailserver and Gateway can ssh to each other. The gateway redirects port 22 to the Mailserver. And that is the non-working part; ssh -p 22 Gateway should ssh to the Mailserver, and while...

Solution: Ok. So. Things are actually stupid. And sad, considering how hard it was to find the answer. Hoster do not route 64 prefix to me. So, I need to use ndproxy or something. ndp - utility ended up completely not helpful. ndproxy - is doing something, probably. Useless it seems for...

I have three machines, Gateway, A, and B. My goal is to have Gateway as a Wireguard server, and A and B as Wireguard clients; and have all three be able to connect to each other via ssh. The current situation is that A and B will just time out trying to connect to any of the others; and Gateway...

Wireguard cuts speed. Used the manual https://docs.vultr.com/how-to-install-wireguard-vpn-on-freebsd-14-0 Everything is fine on Ubuntu. Please tell me where to look?

Keep in mind I set up a wireguard server and 3 ubuntu clients. we wg0.conf [Interface] PrivateKey = private.key address = 11.11.11.6/32 DNS = 8.8.8.8 [Peer] PublicKey = publicserver.key AllowedIPs = 0.0.0.0/0 Endpoint = serverip:51820 PersistentKeepalive = 15 rc.conf wireguard_enable="YES"...

Hello. I'm trying to run an IRC server on my machine at home. The problem is that I'm behind my ISP's CGNAT, so I'm trying to connect this home machine(A) to a remote machine(B) that has public IP using WireGuard. On server A I wrote the following WireGuard config: #...

Hi all! Is it possible to load the wg-interface configuration through a setting in rc.conf without using the devd hook? On FreeBSD v.14 my wireguard service run under that config: # cat /boot/loader.conf | grep wg if_wg_load="YES" # # cat /etc/rc.conf | grep wg cloned_interfaces="wg"...

Mostly, I don't have a problem with tweaking the sudoers file and tried to read the manual carefully. But the Wireguard thing (and, I suspect, OpenVPN would've behaved much the same way) apparently involves spawning some other processes, which somehow, sudo doesn't cover. I change my VPN...

Hello, I want to change my firewall (FW) because it's not a freebsd machine. The freebsd machine will become my new firewall. The version is "13.2-RELEASE-p8 FreeBSD 13.2-RELEASE-p8 GENERIC amd64 I want to create a Wireguard VPN tunnel between my new firewall and the outside, but only for...

Everything was alright on 13.2 release, then I did binary upgrade to 14.0 release. Now I have to run service wireguard restart after each reboot to have the internet connection work. More details further down: I use x86_64 FreeBSD router, my setup is deviates from the usual in two ways: I have...

I started playing with wireguard on a pfsense router to try to see if I could overcome a CG Nat on a hotspot I want to use when visiting my mother a couple hours from home. I stay in an RV when up there and have a couple of options for internet (cellular and local wifi) that I now connect to...

I'm missing something obvious. Why NAT doesn't work in a Wireguard server to route clients' traffic? ext_if="vtnet0" wg_clients="10.40.0.0/24" nat on $ext_if inet from $wg_clients to any -> ($ext_if) The server's Wireguard IP address is 10.40.0.1, the client's - 10.40.0.30. Running tcpdump on...

Colleagues, tell me why I can't route another subnet through the wireguard? I have two computers, one is a router and the other is a client. The router has an interface with the address 172.16.0.1/24 and a wireguard interface with the address 10.20.0.1/24. The client has an interface with the...

Hello everyone, Over the last year and a half I have learned a lot about IPv6, but unfortunately I am limited by my available ISPs (only dynamic IPv6 prefixes or prohibitively expensive business contracts). So I was thinking about getting my own ASN and renting a PI /48 IPv6 prefix so I can use...

Hello, I tried for a quite some time to get it working, but unsuccessful so far. I hope to get some pointers here that will help me to learn more about FreeBSD, wireguard and networking, also the content might be helpful for others browsing the web for solutions. Note that I am very new to...

Preface I'm posting this in the Networking forum, though it could possibly be more valid in the Firewall forum. Moderators please move if required. Executive Summary I'm having an issue with very poor performance in one particular direction through a Wireguard tunnel between two FreeBSD 13.1...

Hi mates! During the boot my FreeBSD box start PF earlier than wg0 interface creates. Enabling pfno IP address found for wg0:network /etc/pf.conf:5: could not parse host specification pfctl: Syntax error in config file: pf rules not loaded /etc/rc: WARNING: Unable to load /etc/pf.conf. . [#]...

I'm trying to get NAT working in my basement. NAT is running fine on my gateway, but this is another situation. In this post, I'm trying to mix in enough detail without overloading. EDIT: I did get the NAT working. In the end, I did not use it. I have a 10.55.0.0/24 network in the basement...