GL-MT1300 Wireguard client - connected, but no internet

I’m able to connect and use the internet through the VPN with the following client and server config on iOS and MacOS, but on the GL-MT1300, the internet does not work.

Server Config:
[Interface]
PrivateKey = server_priv
Address = 10.6.0.1/24
ListenPort = 51820

[Peer]
PublicKey = mike_pub
PresharedKey = mike_psk
AllowedIPs = 10.6.0.2/32

Client Config:
[Interface]
PrivateKey = mike_priv
Address = 10.6.0.2/24
DNS = 209.18.47.62, 209.18.47.61

[Peer]
PublicKey = server_pub
PresharedKey = mike_psk
Endpoint = REDACTED:51820
AllowedIPs = 0.0.0.0/0, ::0/0

via SSH on the GLMT1300:
root@GL-MT1300:~# wg
interface: wg0
public key: REDACTED
private key: (hidden)
listening port: 14602

peer: REDACTED
preshared key: (hidden)
endpoint: REDACTED:51820
allowed ips: 0.0.0.0/0, ::/0
latest handshake: 39 seconds ago
transfer: 280 B received, 35.61 MiB sent
persistent keepalive: every 25 seconds
root@GL-MT1300:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default * 128.0.0.0 U 0 0 0 wg0
default 192.168.1.1 0.0.0.0 UG 10 0 0 eth0.2
REDACTED 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0.2
128.0.0.0 * 128.0.0.0 U 0 0 0 wg0
192.168.1.0 * 255.255.255.0 U 10 0 0 eth0.2
192.168.8.0 * 255.255.255.0 U 0 0 0 br-lan
root@GL-MT1300:~# nslookup google.com
;; connection timed out; no servers could be reached

Can you ping the wireguard server from the beryl (and the other way around)?

Just sharing.

With v3.200, I had issues trying to connect to the internet with WG enabled. Tried several StrongVPN WG servers and they were mostly intermittent connection then no connection for the past 24 hours. It should be noted that I can ping the same servers and with the same conf I was able to connect through the Windows10 WG app.

I’ve upgraded to v3.201 and now have a stable internet connection through several StrongVPN WG servers.

1 Like

Updating the firmware as suggested by @Block561 did the trick. I had to delete and add the wireguard client config and then the internet worked. Looks like the routing table is fixed as a result.

Notice the 10.6.0.0 route that wasn’t there before…that’s what routes to the VPN.

root@GL-MT1300:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default * 128.0.0.0 U 0 0 0 wg0
default 192.168.1.1 0.0.0.0 UG 10 0 0 eth0.2
10.6.0.0 * 255.255.255.0 U 0 0 0 wg0
REDACTED 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0.2
128.0.0.0 * 128.0.0.0 U 0 0 0 wg0
192.168.1.0 * 255.255.255.0 U 10 0 0 eth0.2
192.168.8.0 * 255.255.255.0 U 0 0 0 br-lan

I had a similar problem (on a Beryl GL-MT1300 - bought last week !) ie. no internet through a wireguard vpn client (its config and the VPN server having been tested ok independently) for all LAN computers/phones through ethernet/wireless.

Simply upgrading the firmware from it initial version to 3.201 (without keeping the settings), and putting the exact same settings worked immediately.

I suspect the relevant bug fix in my case is: “Fixed the problem that when WireGuard’s Allowed IPs are not set with global proxy address, router will be unable to access the internet.”

1 Like