Community discussions

MikroTik App
 
simonefil
newbie
Topic Author
Posts: 42
Joined: Tue Apr 13, 2021 9:22 pm
Location: Bergamo - Italy
Contact:

Wireguard Windows client connects but there is no traffic

Thu May 25, 2023 6:21 pm

Good morning.
I'm configuring Wireguard on a CHR with RouterOs v7.8 in test environment.
I configured the wireguard interface, declared the address and subnet in "addresses" and configured the peer.
I configured client for windows 11, it connects, but if I ping google or the IP that I have declared in "addresses" the windows prompt returns me "general error" and obviously the PC does not surf the internet. I really don't understand what the mistake is. The configurations are as follows:
- CHR Config:
/interface ethernet
set [ find default-name=ether1 ] disable-running-check=no
/interface wireguard
add listen-port=53631 mtu=1420 name=wireguard1
/interface wireguard peers
add allowed-address=10.0.0.10/32 interface=wireguard1 public-key=\
    "+LLZg9fWe3MnUfYV/3th**********YJ13/3NHPRw="
/ip address
add address=10.0.0.1/24 interface=wireguard1 network=10.0.0.0
add interface=ether1
/ip firewall filter
add action=accept chain=input comment="Wireguard rule" dst-port=53631 \
    in-interface=ether1 protocol=udp
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
- Windows client config:
[Interface]
PrivateKey = eOjDsLKv2/Iv3hrF7dpTQbsnhhvtg1vyrJksSTcgXWc=
Address = 10.0.0.10/32
DNS = 8.8.8.8

[Peer]
PublicKey = +LLZg9fWe3MnUfYV/3th94z8rSWziuhXYJ13/3NHPRw=
AllowedIPs = 0.0.0.0/0
Endpoint = 212.227.37.157:53631
PersistentKeepalive = 10
- CMD route print:
:\Users\Simone>route print
===========================================================================
Elenco interfacce
 34...........................WireGuard Tunnel
  7...........................Kaspersky VPN
  4...a0 8c ** ** ** 91 ......Intel(R) Ethernet Connection (5) I219-LM
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Tabella route
===========================================================================
Route attive:
     Indirizzo rete             Mask          Gateway     Interfaccia Metrica
          0.0.0.0          0.0.0.0     192.168.3.75    192.168.3.144     25
          0.0.0.0          0.0.0.0         On-link         10.0.0.10      0
        10.0.0.10  255.255.255.255         On-link         10.0.0.10    256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.3.0    255.255.255.0         On-link     192.168.3.144    281
    192.168.3.144  255.255.255.255         On-link     192.168.3.144    281
    192.168.3.255  255.255.255.255         On-link     192.168.3.144    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link     192.168.3.144    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link     192.168.3.144    281
===========================================================================
Route permanenti:
  Nessuna

IPv6 Tabella route
===========================================================================
Route attive:
 Interf Metrica Rete Destinazione      Gateway
  1    331 ::1/128                  On-link
  4    281 fe80::/64                On-link
  4    281 fe80::2faa:b39:ea07:a8d4/128
                                    On-link
  1    331 ff00::/8                 On-link
  4    281 ff00::/8                 On-link
===========================================================================
Route permanenti:
It seems I don't have a Wireguard exit route, but I just don't understand how to set it up.
Could someone help me figure out where I'm wrong?
Thanks yo to everyone
 
simonefil
newbie
Topic Author
Posts: 42
Joined: Tue Apr 13, 2021 9:22 pm
Location: Bergamo - Italy
Contact:

Re: Wireguard Windows client connects but there is no traffic

Thu May 25, 2023 6:24 pm

Image

this is the wireguard screen once connected
 
indymx
just joined
Posts: 13
Joined: Wed Jan 12, 2022 3:38 pm

Re: Wireguard Windows client connects but there is no traffic

Mon May 29, 2023 11:23 pm

I'm having a similar issue on Windows 11. Did you check the logs on the client on Windows to see if it's failing handshake like mine is?

I have two android devices connecting just fine with everything working. But the windows client will not handshake.. Can't figure out why and the logging is pretty weak.
 
simonefil
newbie
Topic Author
Posts: 42
Joined: Tue Apr 13, 2021 9:22 pm
Location: Bergamo - Italy
Contact:

Re: Wireguard Windows client connects but there is no traffic

Tue May 30, 2023 1:46 am

I'm having a similar issue on Windows 11. Did you check the logs on the client on Windows to see if it's failing handshake like mine is?

I have two android devices connecting just fine with everything working. But the windows client will not handshake.. Can't figure out why and the logging is pretty weak.
Hi.
In recent days I tried to configure the same Wireguard configuration on a notebook with Windows 10 Pro and it navigates perfectly. The notebook with Windows 11 Pro authenticates itself to Wireguard, but does not navigate.
At this point I think it's a Windows 11 problem
 
indymx
just joined
Posts: 13
Joined: Wed Jan 12, 2022 3:38 pm

Re: Wireguard Windows client connects but there is no traffic

Sat Jun 03, 2023 2:52 pm

I'm thinking that could be it as well, however, I can't get it to handshake with Ubuntu on WSL on Windows 11 either.

I'm going to try a Ubuntu Live CD today and see if that will connect.
 
simonefil
newbie
Topic Author
Posts: 42
Joined: Tue Apr 13, 2021 9:22 pm
Location: Bergamo - Italy
Contact:

Re: Wireguard Windows client connects but there is no traffic

Sat Jun 03, 2023 3:30 pm

I'm thinking that could be it as well, however, I can't get it to handshake with Ubuntu on WSL on Windows 11 either.

I'm going to try a Ubuntu Live CD today and see if that will connect.
HI.
I managed to fix the problem. I deleted all the configuration from the windows pc and created it from scratch. It connected without any problem

BR
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 18958
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Wireguard Windows client connects but there is no traffic

Sat Jun 03, 2023 6:54 pm

That seems strange, what did you do differently on this setup............. any firewall or antivirus popup stating allow this app etc.........

Who is online

Users browsing this forum: Fasder, Google [Bot] and 39 guests