I've updated the export with the latest rules. I tried adding an Accept rule in the Input chain for udp, 1921 (set in any port) with ether 1 as the in. So there's an issue with the firewall table or NAT table to allow wireguard to actually receive connections from ether1. I've checked from a server and it seems that actually the port I configured wireguard on is not open. 03:50:04.044820: peer(SuhP…iVCs) - Handshake did not complete after 5 seconds, retrying (try 2) 03:49:58.881813: peer(SuhP…iVCs) - Sending handshake initiation 03:49:58.594013: Status update notification timeout for tunnel 'HK'.
I've setup a masquerade rule to give access to my WAN for the wireguard subnet, I've also added a firewall forward accept rule for the wireguard subnet but I'm probably missing something stupid and it doesn't seem to work.ĮDIT: Looking at the wireguard client logs, the error is I've been trying to setup Wireguard on my mikrotik router, I can connect but I can't access anything on the internal network or the WAN.
0 kommentar(er)
