Wireguard disconnect and down internet

sar100 · December 13, 2023, 10:06am

Hi all,

I have a problem with Wireguard client, I have a GL-AX1800 and I connect to other GL-AX1800 throuht Wireguard.

All is working fine, I use “VPN Policy Base on the Client Device” with one LAN device. This device use the VPN and the others use WAN directly.

But if I disconnect the server, all other devices in the client LAN lost internet connection. I think is a DNS problem.

AX-1800 (192.168.0.0) → WireguardClient (10.0.0.4) → Wireguard Server (10.0.0.1) → AX-1800 (192.168.8.0)

The config file of Wireguard is

[Interface]
Address = 10.0.0.4/24
PrivateKey = XXXXXX
DNS = 192.168.0.1
MTU = 1420

[Peer]
AllowedIPs = 0.0.0.0/0, ::/0
Endpoint = XXXXXX.glddns.com:51820
PersistentKeepalive = 25
PublicKey = XXXXXX

I have changed DNS by others (8.8.8.8, 64.6.64.6) whithout fix it.

If I shutdown the client the internet connection is working again.

Thanks!!!

ikun · December 13, 2023, 12:01pm

hi,
What is the version of your devices? I have tried with version 4.4.6 and version 4.5.0, and didn’t reproduced. These are my steps:

setup AX1800-A as Wireguard server
setup AX1800-B as Wireguard client and connect to AX1800-A through Wireguard
setup “VPN Policy Base on the Client Device” , allow my PC to use VPN
disable Wiregurd server
use my phone behind AX1800-B to access internet, it works.

Did my steps match with yours?

sar100 · December 13, 2023, 12:31pm

Both AX-1800 are in v4.4.6

The steps are similar, with this configuration file.

setup AX1800-A as Wireguard server
setup AX1800-B as Wireguard client and connect to AX1800-A through Wireguard
setup “VPN Policy Base on the Client Device” , allow my TV to use VPN
disable Wireguard server
use my PC behind AX1800-B to access internet, it doesn’t work.
Stop client
My PC access to internet.

I could try if my TV has internet o not.

And I am using ADguard also.

Thanks!

ikun · December 14, 2023, 2:24am

hi,
It is a known issue of conflict between ADguard and vpn policy. Please using vpn policy without ADguard enabled. My colleague is looking for a way to make both compatible.

admon · December 14, 2023, 6:14am

Are you sure about that?
I am using AGH + vpn policies without any problem.

ikun · December 14, 2023, 11:33am

yes. It does not appear all the time. It appear when firewall rules of adg and vpn policy are messed up.

sar100 · December 15, 2023, 4:40pm

Thank you,

we have find a error in our configuration. In the AX-1800-B where is the Wireguard client I had configured a Wireguard server also and the IP os this Lan (10.0.0.1) was the same of the other router server.

I have changed my wireguard server IP to 10.0.1.1 and I don’t have any lost of internet access when the other server down.

We want to continue doing other test, but, apparently, it seems to work.

Thanks!