However, im stuck on the Endpoint IP address, confused on what I should enter as it does not have a static IP address since its on 4/5G router using a local SimCard from the ISP.
Do I just enter the local login IP 192.168.1.1:51820 ?
Also here is my setup, would like to understand this better.
The RUTX50 is accessing the Internet via the SimCard on 4/5G network.
IP is 192.168.1.1/24
DHCP enabled.
I would like to use Wireguard VPN so do i just need to enable this and turn this router into Server mode ?
On my windows machine (on a different network - 172.162.1.123/24)… Do i just need to input this ?
[Interface]
Address = 172.162.1.123/24
ListenPort = 51820
PrivateKey = Server or windows private key ??
[Peer]
PublicKey = Servers public key ?
PresharedKey = Server or windows private key ??
AllowedIPs = 192.168.0.0/24
Endpoint = 192.168.1.1:51820 ??
Thank you for the provided information. In the Endpoint Host IP field, you need to specify a public router’s WAN IP address provided by the ISP, which can be checked via the router’s WebUI Network → WAN page. More information regarding public and private IPs can be found here. Also, ensure your devices don’t have shared public IP addresses since the VPN wouldn’t work. However, if you don’t have a public IP on your RUTX50 – RMS VPN or ZeroTier can be appropriate alternatives.
Now in your described case, the Wireguard VPN setup is pretty simple. Follow these steps:
Create the Wireguard server’s instance on your RUTX50, steps are provided here.
Configure Wireguard client on your Windows OS machine according to these steps. Address is client’s virtual IP, e.g. 10.0.0.4/24, PrivateKey – wireguard-private-key, leave it as it is, PublicKey – server’s public key (copied from the first step), AllowedIPs – 10.0.0.0/24, 192.168.1.0/24, Endpoint – server’s public IP address.
Follow the steps from here to add peer connection on the WG server’s interface.
Configure the server’s firewall to allow Peer-to-Peer communication. All needed information can be found in this part.
Once you have finished the configuration, you can test it by checking if you can reach your machine via the VPN network by connecting to the server’s CLI and using the command: ping 172.162.1.123
Additionally, it would be perfect if you could provide a topology of your WG setup and a troubleshoot file that can be downloaded from System → Maintenance → Troubleshoot section. Since we do not have direct messages possibility on this forum. I’ve sent you Hubspot instructions. Follow them to attach a downloaded TS file.
If you have any further questions or need additional assistance, please don’t hesitate to reach out.