Wireguard VPN not LAN access

Patrick.lelievre · July 5, 2023, 6:39pm

Hi,

I followed the Teltonika Wireguard VPN example “WireGuard Configuration Example - Teltonika Networks Wiki”.

The tunnel is up. I can reach VPN IP from both side 10.0.0.1(RUTX08) and 10.0.0.2 (RUT240). I can also reach the local IP address of both router 192.168.1.1 for RUTX08 and 192.168.3.1 (RUT240).

But I can’t reach any other lan device 192.168.1.xxx behind the RUTX08 or 192.168.3.xxx behind the RUT240 over the VPN.

The Rules looks fine… the firewall interface is in the LAN…

flebourse · July 5, 2023, 7:58pm

Hello,
On the RUTX08: set Allowed IPs to 10.0.0.2/32 + 192.168.3.0/24
On the RUT240: set Allowed IPs to 10.0.01/32 + 192.168.1.0/24
Make sure that the default route of the devices point to the router (192.168.1.1 on the RUTX08 side, 192.168.3.1 on the RUT240 side).
And set wireguard => lan to Accept / Accept / Accept in the firewall for both sides.
Regards,