I currently have an ubuntu vps acting as a wireguard server. I can connect different devices to the server successfully from inside my home network and with celular data. I currently have tmobile home internet. I connected an rb952 to the tmobile router and configured the wireguard interface and peer. The mikrotik would be acting as a client. ROuter has No default configuration. I can access the internet with devices connected to the mikrotik wifi thats acting as a bridge but wireguard is not doing the handshaking with the server. Any ideas?
the MT has a bridge configured and all the ports are inside that bridge, the bridge is receiving ip from the Tmobile router, if thats what you mean. But if you mean putting the Tmobile router in bridge mode, not able to do that, tmobile router is restricted
I presume that the XX.XX.XX.XX is not on the same network 10.8.0.0/24, right?
Can you ping successfully the XX.XX.XX.XX endpoint address from the router?
If not, which error do you get?
the endpoint address is 74.208.xx.xx
from the MT router i can ping google but no the endpoint, timeout
on my windows machine i also cant ping the endpoint but that does not prevent me from connecting other devices to the wireguard tunnel
It sounds like the Mikrotik router may not have the correct routes or NAT configuration for WireGuard traffic.
Debug with /log print or torch to see if packets are leaving and returning correctly.
UNfortunately the “timeout” in the ping could be due to anything along the connection, including the remote 74.208.xx.xx prevented from replying to ICMP requests (newish windows as an example have a firewall rule that prevents replying from pings coming from outside the local lan), but it could as well be something in the local router settings.
I am still not convinced that the router can reach the endpoint.
I suspect I am missing something in the configuration in the mikrotik cause if it take the wireguard config and put it in my iPhone or my computer, i can connect to the wireguard server no matter the network i am connected to( home wifi, office wifi, or celullar data), but the mikrotik doesnt, i may be missing some configuration but cant figure it out
Well it gets to 172.20.10.1 (and stops there) .
What is that address?
Your network gateway?
I don’t really understand how it even gets there without a route (I was suspecting a ping error of “no route to host”.).
Anyway, post the output of:
I did the config but still the mikrotik is not doing the handshaking. I can use the same wireguard configuration in other devices connected to the same network where the mikrotik gets the ip from and i can connect to the wireguard server successfully. here is the config:
