Maybe a "stupid" question..

I have hp AX2 router on Public IP (fiber network)
Have a few Wireguard tunnels set up for remote access from clients

Every thing works as expected...
WG clients can connect to LAN clients and vice versa
WG clients can connect to other WG clients
WG clients can ping Router on LAN IP 10.2.1.5 and on WG interface 10.2.3.5 (Clients has address 10.2.3.x)

But WG clients can not connect to Router WEB interface...connection time out
Connection is http://10.2.3.5 or ssh ...
Firewall setup is straight forward for a Home router
What information shall I provide to get a advise ?

Br
Knud

Config perhaps ?
Most likely there is no input accept rule for your wireguard interface.

In general one should set the Router ( assuming server for handshake ) the wireguard interface as part of the LAN interface, that then usuallly, through fw rules, allows RWs to access internet via FW rules and DNS services via input chain rules.
However your request is to config the router, and in that case input chain rule. BUT, do you WANT all RWs to have that access, NO just the admins remote RW accounts.
So interface=wireguard src-address=X or src-address-list=admin etc...

In general one should set the Router ( assuming server for handshake ) the wireguard interface as part of the LAN interface, that then usuallly, through fw rules, allows RWs to access internet via FW rules and DNS services via input chain rules.

That was what I was looking for...giving the WG clients same access as the LAN clients

Thanks