2 Wireguard connections (clients) is this right way to setup?

Hi just wished to have some confirmation from experienced openwrt and Wireguard users since I am pretty new to openwrt myself.

I have a basic home set up, ISP > Openwrtx86 router>AirVPN WG> All devices on network under AirVPN WG> pbr routing for just 2 devices on wan.

This is currently how my openwrt is set up:

I have created my 1st WG connection as WG, 2nd WG connection as WGAirbackup (disabled upon start up). Both are different AirVPN servers which work fine when 1 is disabled and stopped.

Is this the right way in setting up a 2nd WG VPN connection?

Or is there a better way about doing this, thanks.

I'm a little unclear as to what the point of the 'backup' connection is? Is AirVPN that unreliable?

Assuming the two connections are identical (apart from a different endpoint IP) then you could achieve the same by just changing the endpoint on the primary connection if it was ever necessary. That way saves the need to duplicate configs for both connections (and the potential issues if a mistake is made) and is just easier to maintain.

Thanks, that AirVPN server is usually good but sometimes their servers get funny with download speeds so I like to hop onto a 2nd one to get full speeds.

I could change the end point details but I did try just using 1 WG interface but they are different connections (servers) to different country locations, also different pre and private keys, and different IP addresses, so it would take some effort to change details constantly.

However speaking of errors you are correct, I do have a minor issue with 2 WG interfaces which I am trying to get fixed so I may very well stick with just 1 WG interface and 1 WG connection to make things easier and less buggy.

I ended up sticking to just one WG interface in the end to keep things more simple as suggested above and to reduce potential errors, in which I did have a minor one in pbr gateway showing wrong gateway upon restart.

Now that I have 1 WG running, no pbr gateway errors or any errors at least so keeping it this way for now.

A work around I found was you can replace your WG settings by going to your interfaces then on your WG0 interface press stop and edit.

Then general settings at bottom you can press import to import your WG config file.

Click Advanced settings and force link, then click edit peer and tick on Route allowed IPs and save and apply.

On the interfaces wireguard you can now press restart and it will restart your new different chosen WG server.

I found its best to double check under pbr to make sure the gateway is correctly set on the WG0 one sometimes it pops up with an error but rebooting it and restarting pbr fixes it cleanly.

You can alternatively back up the openwrt config with different servers (US, Europe etc) and restore which ever VPN country or server you wish if you don't want to edit the config but its easy enough.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.