Hi,
I have a OPNSENSE server Wireguard, and need a clients wireguard config in Mango.
The WG vpn in Mnago is accesing to the server OK, but i nned acces to Mango devices connecteds.
When ping to the local Lan (Opnsense) to Mango its not ping.
My config is:
192.168.5.x ( OPNSENSE)
10.10.10.x (WG )
192.168.8.x (Mango GliNET)
Is possible this config??
Do you have “Access Local Network” enabled on Mango? Is 192.168.8.0/24 added to AllowedIPs on OPNSENSE?
The option Acces local Netowrk on Mango is checked,
But the allowed IPS in Opnsesense in WG option??
You need to add 192.168.8.0/24 to the Allowed IPs configuration of the WireGuard Endpoint corresponding to the Mango
OPNsense → VPN → WireGuard → Endpoints
Can you run traceroute command in your OPNsense?
traceroute 192.168.8.1
traceroute 192.168.8.x
192.168.8.x is your any client’s IP.
traceroute to 192.168.8.1 (192.168.8.1) from 192.168.46.1, 18 hops max, 40 byte packets
1 192.168.8.1 30.137 ms 21.965 ms 38.008 ms
If put a ip 10.10.10.2 acess to Mnago config web.
If you can reach devices on the Mango LAN from the OPNsense, but cannot reach the same devices from a client device connected to the OPNsense, then you may need to add a route on the OPNsense to go through WireGuard.
I do not work for and I do not have formal association with GL.iNet
Are you hiding the intermediate nodes of traceroute?
I may not have been clear, there are two most likely cases that could be causing this problem
Please use traceroute or check the route table on OPNSense to confirm if this is the case 1.
I create a route 192.168.8.x by WG Interface…
How to disable the router in Mango?
I don’t understand what you mean, are you trying to disable the firewall? You can check the forwarding settings of the firewall in the LuCI interface.
What is the route that you created on OPNsense, including the Destination IP/Netmask, Gateway IP and Interface Name?