Brume 2 Wireguard interface error

Routers 4G LTE, 5G NR, USB modems
1

Hello All

Trying to setup my Wireguard server on Brume 2. My network topology is as below

  1. Private LAN 10.0.0.x that all Wireguard clients need to access
  2. Head end router with PPOE and static IP from ISP. Destination NAT to Wireguard WAN port IP 172.16.0.x
  3. Wireguard server connection is good to client in the Internet and the Brume 2 GL.Inet UI is accessible
  4. However the internal LAN Ips in subnet 10.0.0.x not accessible. Allow local LAN traffic checkbox is enabled
  5. Some forums suggested firewall rule on Luci to allow from wgserver to LAN and WAN. However in my case wgserver zone is empty and doesn’t have wg0 interface type. Error shown is install plugins (luci-proto) which I install but to no avail
  6. On GLI. Inet GUI i disabled the default DHCP server as I dont need it. Basically my Wifi router WAN interface sits on 10.0.0.x subnet and hides clients behind its LAN ip address

Is there anything wrong with the way I have set it up? It looks like some iptables issue integration with GL.inet GUI. If I setup from Luci, it is not visible in the main GUI

Maneesh

2

Hello,

  1. Configuring the WG server and client in GL GUI Admin Panel, leave Luci alone.
  1. Regarding you mentioned, are the LAN/WAN subnet 10.0.0.0/8? What is the WG subnet?

Please do not set up the same subnet for WG and LAN/WAN.

  1. Please refer the guides to check:
    How to troubleshoot WireGuard
    Build your own WireGuard home server - GL.iNet Router Docs 4

If no luck, please draw a network topology, and marked the IP address of all interfaces.

  1. If you require to access WG client LAN in other WG clients, please add the routes in WG server
    VPN Dashboard (Firmware v4.7 and earlier) - GL.iNet Router Docs 4
4

Hello Bruce

Issue resolved. The return route to WG subnet was missing. Thank you

1 Like