I am a v basic user and looking to know what additional settings I have to change to allow wireguard to connect to my openvpn router while its running a private vpn to the internet/and while not running vpn please. Any help would be appreciated. Thanks in advance.
Thanks for the quick reply, I'm a basic user so need a little help with what to put where if possible please? I have installed the suggested packages but am a bit clueless what to change to get what I need working.
Thanks I have added correct setting to openvpn client.
I think I am a more basic user than you think, and don't understand how to create the policies you recommend and what to put in them.. I can provide all details if you can help please?
My home LAN uses range 192.168.20.175-199
My WG subnet I assume is 10.14.0.1?
I am not very good with networking so unsure what to put in each field for the policy? Sorry If im being a bit thick.
Thanks very much for the suggestions and quick replies, much appreciated.
I have added all your settings with no errors reported. I now can connect via Wireguard on phone to my router when the VPN is activated, but when I check my IP address on both LAN and Phone they are showing my ISP WAN address not the VPN? Do I need to do anything more? Or What could I have done wrong for this to happen?
I think I have worked out why its now not working, I was also running VPN Bypass, and have now disabled it and VPN and WAN Policy-Based Routing now is working correctly.. just need to work out how can do what VPN Bypass was doing using VPN and WAN Policy-Based Routing it seems.. All I now need to do is work out how to exclude certain LAN IP addresses to bypass the VPN?
I have one minor issue to resolve which is when the vpn is not connected my internal network cant connect to the internet, is there a way around this as my internal dns then ceases to function and I still want my dns traffic to go through the VPN once it is connected. What happens is that if i reboot the router for a prelonged period of time the VPN won't come back up as the internal DNS server is trying to get the address of the VPN but cant because there is no internet until VPN is up.. ad infinitum.
Thanks , that would be an option, and I sort of get where your coming from with the suggestion but I currently use PiHole as my current solution and that provides all my DNS/DHCP needs at present and dont really want to change anything with that for now if I can help it.
I may have to go with your suggestion if cant find way around though, as if VPN goes down for some time I think my internet will be down until I intervene and disable VPN / VPN routing until the PiHole is able to resolve addresses via internet again to get VPN address and then re-enable everthing.. but that would be unhelpful if I was accessing remotely
Thanks again for everything.
Edit: I think I was being a bit stupid, as well as not explaining myself properly as such and the functionality I was after was to just disable strict enforcement option in VPN routing