I've been struggling to set up a VPN for my guest network for the past few days but haven't been successful yet. I would really appreciate it if you could help me resolve this issue.
Here is what I have done so far:
Added a wireless guest network according to this tutorial. If I forward the guest zone to wan, it works as expected.
Added a WireGuard interface and firewall zone for my WG client. I'm not sure what the best way of testing this is but when I run
# Restart services /etc/init.d/log restart; /etc/init.d/network restart; sleep 10 # Log and status logread -e vpn; netstat -l -n -p | grep -e "^udp\s.*\s-$"
as instructed in this tutorial, the log says that the client is up.
I think what's missing right now is to use VPN PBR to define a policy for all this to work. What I have tried so far in LuCI is the following configuration:
- Local addresses: 192.168.41.1/24
- Protocol: TCP/UDP
- Chain: PREROUTING
- Interface: my WG interface
However, using this configuration, I can't connect to the internet on my guest network.
Should I modify the PBR policy or use any additional configuration to make this work?