Hi there,
In my home lab I have a Mikrotik RB3011 with 3 VLAN (Home, IoT, Guest).
On th IoT LAN I have a Proxmox Container running WigreGuard server:
Today I added a new client, a VPN in cloud connect via WG to my Homelab.
I’m trying to reach the server via SSH using the WG IP that is 10.8.0.3 without success.
How can i router the my SSH connect to the WG server?
Thank you for the help!
Did you add a route?
https://help.mikrotik.com/docs/display/ROS/WireGuard#WireGuard-IPandroutingconfiguration
Why? SSH is not required if you have a wireguard connection??
Also is there a reason not to use the wireugard on the router itself?
Hi,
my WG server is on a Server, it is not running on the router.
I started to run WG server on the router but I would like that the WG client can only reach the devices on the IoT only.
It is feasible?
Sure, just add a firewall filter rule on the forward chain.
Hi there,
I just set up a Wireguard server and I can connect to my Router.
In the WG config file, I define the DNS with the IP of my PI Hole on the IoT network (192.168.10.254) since it works also as local DNS:
[Interface]
PrivateKey = xxxxx
Address = 10.0.0.50/32
DNS = 192.168.10.254
MTU = 1420
[Peer]
PublicKey = xxxxx
AllowedIPs = 192.168.10.0/24
Endpoint = xxxxx
PersistentKeepalive = 21
I added a forward rule on the firewall with:
Using the IP address i can reach my services, but not via Local DNS (Pi Hole 192.168.10.254).
Any hint?
Thank you!