I finally have multiple public ip address so I can finally test wireguard from within my office before I send openwrt out in the wild
I have 2 OpenWrt machines. Each with it's own public ip address
On machine A I have
config interface 'wg0'
option proto 'wireguard'
option private_key 'xx'
option listen_port '51820'
config wireguard_wg0
option description 'remote1'
option public_key 'xx'
option route_allowed_ips '1'
option persistent_keepalive '25'
option endpoint_host 'public ip of machine B'
option endpoint_port '51820'
list allowed_ips '0.0.0.0'
On Machine B I have
config interface 'wg0'
option proto 'wireguard'
option private_key 'xx'
option listen_port '51820'
config wireguard_wg0
option description 'main'
option public_key 'xx'
option route_allowed_ips '1'
option persistent_keepalive '25'
option endpoint_host 'public ip of machine A'
option endpoint_port '51820'
list allowed_ips '0.0.0.0'
If added both wg0 interfaces (one on each machine) to the lan firewall zone and also created an udp firewall accept rule to 'this device'
I can see that they handshake so the connection is successful but I can't ping anything on the lan of the remote site.
Can someone please advice what information I should offer in order to enable you to help setting this up?