I’m using Routeros 7.20.6 as a Wireguard server. I’m intending it to receive inbound connections from a number of peers, and I have a configuration file with an Interface section and a number of [Peer] sections, which look like this:
[Peer]
PublicKey = UO+F1WsWOHfmEJv+twL3TGtM+HPNOJRPKy/nPTufwGY=
AllowedIPs = 172.16.0.12/32
PersistentKeepalive = 15
Note that they do NOT have an endpoint entry, and I do not want them to - the Routeros box will never initiate a connection to the peers, and does not know what address/port they will use when they do connect.
However, when I import this config file, Routeros correctly generates the interface and all the peers, but instead of having no endpoint setting for the peers, it creates an empty endpoint field. This feels like it wouldn’t matter, but actually the peers cannot connect until I remove this empty endpoint value (which I’ve been doing using the minus button next to the textbox in the the UI).
In the log, the “peer entry added’ lines contain endpoint-address=”” which is presumably the smoking gun - I do not want an endpoint address with an empty string, I want no endpoint address at all.
Is there a way to put some kind of ‘null’ endpoint entry into a config filel, or is WG Import simply incapable of creating peers without an endpoint?
TIA.