Hello, everyone. Have a good day.
I’m encountering an issue with my WireGuard P2P VPN tunnels. I have multiple branch offices connecting to a central Head Office MikroTik, which acts as the WireGuard server. Each Branch Office MikroTik functions as a WireGuard client. This entire setup was stable and working reliably across all branches when they were running older RouterOS versions (specifically, the Head Office was on 7.16.2 and branches also were on 7.16.2).
The problem began after I updated the Head Office MikroTik to RouterOS 7.19.1 and simultaneously updated one specific Branch Office MikroTik to RouterOS 7.19.1. For this particular updated branch, the WireGuard tunnel is no longer establishing a handshake; the Last Handshake status remains empty/dead, and there’s no Rx/Tx activity.
Crucially, all my other branch offices that remain on RouterOS 7.16.2 are still connecting to the Head Office (now on 7.19.1) without any issues. This strongly suggests the problem is localized to the branch MikroTik that was updated to 7.19.1.
My Head Office MikroTik is an RB4011iGS+ (arm). I need assistance understanding why the WireGuard connection failed after this specific update on the branch side. What might have changed or been restricted in RouterOS 7.19.1 that could cause this behavior?