Good Cloud and Wireguard Server

Pascone10 · May 22, 2024, 12:15pm

When using GoodCloud can I use Wireguard to access the LAN of one of the routers to access devices using the site to site that is setup with GoodCloud? It seems like when GoodCloud is enabled, Wireguard does not work.

Thank you for your help!

radishman · May 23, 2024, 8:00am

wireguard and goodcloud can work together.
Are you using cloud platform S2S service? Or did you build it by hand?

Pascone10 · May 23, 2024, 8:14pm

@radishman Thank you for your reply!

I am using the GoodCould.xyz to create the S2S and I have the working. If I am on the LAN of one of the routers I can access devices on the S2S. Where I am running into the issue is if I use wirguard server and connect using my phone or PC to a GLinet Router using that method, I cant see any devices on the S2S.

radishman · May 24, 2024, 1:00am

So, I understand that in the topology below, PC can be accessed through S2S, but now you can't access PC from phone? If there are any errors, you can also provide the topology diagram

Pascone10 · May 24, 2024, 2:12am

Here you are. This may help.

Thank you for taking the time.

radishman · May 24, 2024, 3:53am

It seems that some additional firewall Settings are required. Try to add below firewall rule.

iptables -I FORWARD -i wgserver -o wg1 -j ACCEPT

Also, I would like to know your router model and firmware version.

1765 · December 19, 2024, 3:13am

I tried that line and it didn’t work for me. I have a flint router. I added it to custom rules and restarted

teleney · December 19, 2024, 11:17am

Hi,
Is your device ax1800 flint or mt6000 flint 2? Can you provide the specific name and firmware version of your device?
This will help us locate the problem.

1765 · December 19, 2024, 3:51pm

It’s the ax1800 running version 4.6.4
Thank you

teleney · December 20, 2024, 4:26am

@1765
Theoretically, radishman's method can achieve communication between s2s and wireguardserver.

Please describe the problem you encountered and your network environment topology in detail. I will build a special environment for you to reproduce this problem.

1765 · December 20, 2024, 3:09pm

My topology is exactly as pascone10 described.
Clients connected to the WireGuard vpn are unable to ping/connect to clients on a good cloud S2S network

1765 · December 20, 2024, 3:11pm

Should the line given only be added to custom firewall rules? Is that the correct location ?

teleney · December 23, 2024, 1:24am

@1765

This should work fine. However, you can also try executing this command in the terminal to see if it works.

Maybe it is caused by some specific settings on your router. If you need our help to troubleshoot, you can share your device to gl_support so that we can analyze it.

bruce · December 23, 2024, 2:15am

Hi,

Here is the guide to share the router with us via GoodCloud. Please PM teleney the router MAC address and the login WebUI password when you shared.