Hi friends, thanks to this wonderful community I managed to fix many things of my GL.inet AR750S ext device. and I am sure I will be able to solve this problem with your help.
My wireguard server once started transmits only packets without receiving, I illustrate the code:
root@OpenWrt:~# vim /etc/config/network
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fdf2:c117:f722::/48'
config interface 'lan'
option type 'bridge'
option ifname 'eth0.1'
option proto 'static'
option netmask '255.255.255.0'
option ip6assign '60'
option ipaddr '192.168.8.1'
option gateway '192.168.1.1'
list dns '1.0.0.1'
list dns '1.1.1.1'
config interface 'wan'
option ifname 'eth0.2'
option proto 'static'
option netmask '255.255.255.0'
option ipaddr '192.168.1.24'
option gateway '192.168.1.1'
list dns '1.0.0.1'
list dns '1.1.1.1'
config interface 'wan6'
option ifname 'eth0.2'
option proto 'dhcpv6'
config switch
option name 'switch0'
option reset '1'
option enable_vlan '1'
config switch_vlan
option device 'switch0'
option vlan '1'
option ports '2 3 0t'
config switch_vlan
option device 'switch0'
option vlan '2'
option ports '1 0t'
config interface 'WireGuard'
option proto 'wireguard'
list addresses '10.0.0.1'
option listen_port '51820'
option private_key 'client-publickey'
config wireguard_WireGuard
option public_key 'server-publickey'
option description 'wg1'
option persistent_keepalive '25'
list allowed_ips '10.0.0.2'
option route_allowed_ips '1'
- /etc/config/network 1/64 1%
I'm going to guess that you have a key problem, at least if your redaction labels are correct.
The wireguard interface must have the local private key.
The wireguard peer config must have the peer public key.
sorry if I have any difficulty in understanding thank you for your availability, I am following the LUCI-wireguard interface, everything the interface asks me I inserted, the other half on that screenshot that I posted maybe there is not
You do realize that this is entirely useless. One end of your wg tunnel is at your laptop. The other ends terminates at the OpenWrt router. The two are already directly connected to each other so there is no value to encrypting your data between them unless you will also have untrusted devices joining the same network.
This configuration offers no added security beyond the ar75s.
No it doesn't. You're encrypting the data between the notebook and the AR750S, that's it. If the Vodafone modem isn't in-between them then the data will not be encrypted.