Dear forum users, I would like to kindly ask you for help.
I am implementing the setup described here: https://help.mikrotik.com/docs/display/ROS/WireGuard to understand this excellent technology. My setup differs just a bit:
- I do not have any firewall rules yet to prevent any blocking issues while still learning
- I do have a "real" public IPs on WAN interfaces. By "real" I mean that these are not routed over internet, these are routed via another third Mikrotik to simulate real environment
- local IPs differ
Let me post an image from the link above to make my description clear:
- I can ping from Workstation 1 to Workstation 3, for example
- I do samba sharing and transmit files over the tunnel, with RB2011iL-RM on both sides (600 MHz CPU) I have what I expected in terms of speed, processor is on 90%
- The overall experience is great, I really love the simplicity of Wireguard configuration, I can still remember headache from IPSec and OpenVPN server configuration:-)
However, I probably miss some knowledge here and thus, kindly ask you for education me. Let's say I am logged in Office1 router:
- I can ping local machine Workstation1
- I can ping all IPs on local interfaces (WAN IP, local interface IP - the gateway for Workstation1, the wireguard local IP - 10.255.255.1)
- I can ping Office2 router WAN public IP - but this is just routing, nothing to do with the tunnel
- I cannot ping Office2 wireguard IP - 10.255.255.2
- I cannot ping Office2 local interface IP - the gateway for Workstation3
- I cannot ping any workstation behind the Office2 router FROM the Office1 router
What am I missung here?
Thank you, Petr