Problems with my wireguard tunnel

Arjan1981 · March 16, 2025, 3:49pm

I hope I’m in the right place, but I have a problem and I don’t know how to get out of it.
I’m not a beginner in networking, but I’m definitely not a pro either.

I bought two Rutmodems (Rut 241) with the goal of extending a CAN connection. For this, I also bought two CAN-to-Ethernet adapters.
The idea is to build a network using WireGuard. The WireGuard server is currently a Windows PC, but it will soon be a Raspberry Pi located at my home.

For Rut modem 1, I created a network with 10.0.1.12, and for Rut modem 2, 10.0.1.14. My PC has 10.0.1.19 as its address.

Then, I created a LAN for Rut modem 1 with 192.168.11.1 and a subnet mask of 255.255.0.0, with WAN as LAN.
For Rut modem 2, I created a LAN with 192.168.10.1 and a subnet mask of 255.255.0.0, also using WAN as LAN.

The configuration for my server looks like this:
[Interface]
PrivateKey = mGxxxxxxxxxx
ListenPort = 51820
Address = 10.0.1.19/32

[Peer]
PublicKey = P3WCzzzzzzzzzzz
AllowedIPs = 10.0.1.20/32

[Peer]
PublicKey = oRxYUxxxxxxxx #modem 2
AllowedIPs = 10.0.1.14/32, 192.168.10.0/24

[Peer]
PublicKey = ahD6cxxxxxxxx #modem 1
AllowedIPs = 10.0.1.12/32, 192.168.11.0/24

I have set the peers to:

Interface
IP addresses: 10.0.1.12/24 modem 1 and 10.0.1.14/24 modem 2
Metric = empty
Listen port = 51820
MTU = empty
DNS servers = empty

Peer
Public key and endpoint host are set correctly.
Allowed IPs: 0.0.0.0/0, 10.0.1.0/24
Route Allowed IPs: On
Tunnel source: Any
Endpoint: 51820
Persistent keep alive: 1
Routing table: empty

I have a connection, and I can ping my modems from the server. I can also ping my server (10.0.1.19) from the modems using CLI or ssh. I can also access the web GUI from my server. However, I can’t get it to work to ping modem 2 from modem 1.
Now, I want to connect the Ethernet to CAN device to the LAN network of modem 1 and the other Ethernet to CAN device to modem 2. Then, I want to forward the CAN data from modem 1 to modem 2 via a UDP or TCP connection and read it there again.

I thought it would be simple, but I can’t get it working. After a few weeks of trying everything, I’ve used AI for help and read through topics, but I think I’m overlooking something.
Who can help me?
I would really like to have a connection between the LAN network of modem 1 and the LAN network of modem 2. for example i can ping 192.168.10.1 from 192.168.11.1 . If this isn’t possible, I could also set a remote server address on the CAN-to-Ethernet device with a port number, which could also be the Wireguard network 10.0.1.0/24
I have reset the modems to their default settings and reconfigured the WireGuard and LAN addresses to start fresh.

Kind Regards Arjan

flebourse · March 16, 2025, 5:12pm

Hello,
There are several issues within your configuration:

Both netmasks should be set to 255.255.255.0 else the two RUts will be in the same network.

No, set the address to 10.0.1.19/24

Yes.

Set MTU to 1420 at most, 1280 is a good choice. Listen port is optional here, set it to 0 or remove it entirely.

Set Persistent keepalive to 25.
With allowed IPs containing 0.0.0.0/0 10.0.1.0/24 becomes redondant.
Better to use 0.0.0.0/1 + 128.0.0.0/1 to avoid interfering with the default route.

Could you retry with the modifications above ?

Regards,

Arjan1981 · March 16, 2025, 5:33pm

Thanks i will try and let you know

Arjan1981 · March 16, 2025, 7:57pm

flebourse many many thanks. it works!!!

system · March 19, 2025, 7:57am

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.