I have a Brume 2. On my WireGuard server configuration, I have my IPv4 Address set to 10.0.0.233/29. DHCP operates in 10.0.0.100 to 10.0.0.199. Below that, I use for manual assignments.
When I add a profile, the Client IP calculates as 10.0.0.2/29.
If this is the IP that will be assigned to my “iPhone”, as the client, is this Client IP calculation appropriate? I was expecting a calculation of 10.0.0.234. I say expecting, but it’s more like, hoping, because I hope I’m right about what this number means. For context, I only, today, looked up what this /# means after the IP address (TIL about CIDR Notation).
Is that screenshot of Reddit of r/openwrt or r/networking or the like? If so please reset your Burme 2 back to the stock settings & discard any configuration changes/files instead of keeping them when you then upgrade the firmware to the latest stable version (GL GUI → System → Upgrade).
The GL GUI handles much of the ‘heavy lifting’ behind the scenes in OpenWrt (the underlying OS) already. You’re looking to reset to a clean slate.
Once WG is up & running as expected then worry about SMB.
I have not performed any of the ipv4 commands. To avoid further confusion, I have removed that section from my original post.
I am in the process of resetting (hold for 10 seconds) the Brume 2, multiple times over the past few days, in aim of my desired setup.
I have been able to see up/down data from my connected client in the VPN dashboard and the WireGuard app in my iPhone. I have had inconsistent and unrepeatable results with accessing any resources on my network through the WireGuard VPN. All of these resources are available when I’m on the LAN.
This situation has led me looking for things that don’t seem right to my extremely newbie eyes. I noticed that the Virtual IP seems off, thus this post.
So, back to the question about WG - the calculated IP address - the Virtual IP that my “iPhone” is assigned doesn’t (appear to) be correct. Is it?: 10.0.0.2/32
The ‘#’ are just comments; they wouldn’t do anything as far as we’re concerned (they’re Proton VPN specific for their paid tier). This is an example of the conf file that your iPhone WG app would use or if you were to ‘drag & drop’ the file into GL GUI → VPN → WireGuard Client → Add Configuration → Upload File .
The [Peer]'s Endpoint would be the VPN ‘server’ IP the Client app/device connects to. :51820 is the standard UDP port for WG.
When you set up the VPN WG Server on the GL device I would just accept whatever the defaults are. Skip the ‘See More’ option. The resulting conf file to import into your iPhone WG should be just fine. If not, we have a bug to file w/ the devs.
Yeah; it’s why I think it better to work on just establishing the WG link first before going in & compounding matters. One step at a time, as it were.
Thanks. Starting over this time yielded the results I was after.
My lan still exists at 10.0.0.x; Brume 2 = 10.0.0.1
WG’s tunnel address is 10.0.8.1/24 (so as not to conflict with the default Open VPN server (which I am not using at the moment)) and I have both masquerading and Allow Remote Access LAN enabled. I took the defaults for the client config.
With my iPhone disconnected from wifi, I connected to the VPN and could get to the Brume 2 admin page at 10.0.0.1. Not only that, but I could actually get to my SMB server, on my Mac, using my Mac’s IP address of 10.0.0.2.
This is really good, and exactly the use case for my Brume 2 (which I kinda enjoy, having had tinkered with OpenWRT back in 2005/6).
I have another question about DNS, but I’ll ask that in a separate thread. Thanks again.