Hi,
I’ve a working WireGuard setup created on another device (pfsense) and another site. I would like to connect a Mikrotik only as a peer to this VPN mainly for remote maintenance. What’s the easiest way to do that?
Is there a wg-quick alternative? Or is the wireguard → tunnel → add the way to go even when I’m just trying to connect to an existing tunnel?
Thanks
Ok, I’ve effectively configured the tunnel using a newly generated key and the peer using the pfsense’s key. Tunnel is now established. I’m trying to make routing to work. I’ve added firewall rules to accept all on the input and forward of the wireguard interface. I’ve added the vpn ip subnet as allowed on the web and ssh service allowed ips.
I’m seeing some traffic being handled by the forward rule but no connection to the web gui still. Suggestions please? Ping on does not work, nothing.
Do I need to still assign the VPN IP directly to the wireguard interface in Mikrotik?
Or shall I just forward the traffic using some firewall rule?
Do I need to add the wireguard interface into a bridge?
Without seeing configs not willing to guess,
https://forum.mikrotik.com/viewtopic.php?t=182340
I’ve had an error in the addresses configured for the wireguard interface.
addess: 10.10.10.3/32 instead of 10.10.10.3/24
That fixed the automatically created ip routes.
Sweet, always nice when you find it yourself!