GLI AX1800 Flint V4 Wireguard Server Issues

timsd · July 5, 2023, 3:24am

Hello Team,
GLI AX1800 Flint Devices when set as Wireguard Server, clients are not able to connect to the internet.
On the same network, when I use my old GLI AX1800 Flint running V3 , clients are able to connect to the internet.

On further investigation, I found out that On V4 the sysctl.conf is not auto populated

Can you please help here / assist further

@hansome @yuxin.zou @alzhao

yuxin.zou · July 5, 2023, 4:12am

What is firmware version of your Flint? It is 4.2.1?

hansome · July 5, 2023, 4:20am

Hi, what option should be in sysctl.conf?
What device do you use for the wireguard client?

timsd · July 5, 2023, 4:30am

Running version 4.1.0

timsd · July 5, 2023, 4:31am

Port forwarding shall be automatically selected and on on the sysctl.conf
I am using an I Phone, as mentioned above in the comments : When I use the GLI AX1800 Flint running V3 as WG server, the client can connect and access the internet but on GLI AX1800 running V4 and above it cannot

hansome · July 5, 2023, 8:22am

Did you run sysupgrade with keep setting? And from which version? Please make a backup of the config
http://192.168.8.1/cgi-bin/luci/admin/system/flash – Generate archive

and reset to factory and set up wireguard server again to see if it works.

timsd · July 5, 2023, 2:44pm

This is a brand new router, and I was configuring a new Wireguard server.

hansome · July 5, 2023, 2:51pm

Could you generate the config backup and export log(Admin panel - System - log) for analysis? Send to Email handongming#gl-inet.com

timsd · July 5, 2023, 3:00pm

I have emailed the logs as requested

timsd · July 5, 2023, 3:02pm

The mail was rejected, did you want me to send to : handongming@gl-inet.com

hansome · July 5, 2023, 3:05pm

Yes, if it is always rejected, then try workspace4hdm@gmail.com

bring.fringe18 · July 5, 2023, 3:59pm

I don’t think sysctl.conf is the issue. I run f/w v 4.2.1 on my Slate AX & Flint:

root@GL-AXT1800:~# cat /etc/sysctl.conf
# Defaults are configured in /etc/sysctl.d/* and can be customized in this file

root@GL-AXT1800:~# wg show
interface: wgclient
  public key: [redacted]=
  private key: (hidden)
  listening port: 32

peer: [redacted]=
  endpoint: 37.19.211.7:51820
  allowed ips: 0.0.0.0/0
  latest handshake: 1 minute, 49 seconds ago
  transfer: 1.69 GiB received, 503.36 MiB sent
  persistent keepalive: every 25 seconds

(I would point out that, in WG, it is a misnomer to call it a ‘client/server’ architecture. It really is all just peer-to-peer but I agree w/ GL that it’s easier for people to understand client/server as if it was similar to OpenVPN.)

timsd · July 6, 2023, 3:36am

What about the firewall config?

bring.fringe18 · July 6, 2023, 3:52am

What about it? That should be handled automatically by GL’s customizations. Others have successfully used the defaults to connect over disparate networks using f/w 4.2.1. See