HI I have setup a wireguard server that works pretty well and a wire client router using v7.1 Beta4, problem is that after creating the interface and some rules for policy base routing is like have the internet traffic does not work meaning for example if someone in the network tries to access "duckduckgo.com", if I set up the wireclient on a PC using windows or linux all traffic works fine, this only happens with the router as client here is kind of the configuration I created:
>wg genkey | tee privatekey | wg pubkey > publickey
>interface wireguard add listen-port=12345 mtu=1420 name=WG1 private-key="abc=="
>interface wireguard peers add allowed-address=0.0.0.0/0 endpoint-address=SERVER_IP endpoint-address=12345 interface=WG1 persistent-keepalive=15 public-key="SERVER_Public_Key"
>ip address add address=10.XX.XX.XX/16 interface=WG1
test the interface by pining google DNS servers:
> ping interface=WG1 126.96.36.199
SEQ HOST SIZE TTL TIME STATUS
0 188.8.131.52 56 121 178ms882us
1 184.108.40.206 56 121 103ms804us
2 220.127.116.11 56 121 71ms521us
sent=3 received=3 packet-loss=0% min-rtt=71ms521us avg-rtt=118ms69us max-rtt=178ms882us
After this set Policy based routing for full internal subnet, some host or based on content using mangle rules(this example is for the whole internal subnet):
>routing table add name=Through_WG fib
>ip route add dst-address=0.0.0.0/0 gateway=WG1 routing-table=Through_WG
>ip firewall nat chain=srcnat src-address=192.168.150.0/24 out-interface="WG1" action=masquerade
>ip firewall mangle add chain=prerouting src-address=192.168.150.0/24 action=mark-routing routing-table=Through_WG
Any ideas how can I debug this issue?