I have wireguard successfully setup and working on my device in a "full vpn" style mode (allowed ips 0.0.0.0/0, and route allowed ips checked). Everything works until a reboot (which unfortunately happens often with power outages in my area).
After reboot, the wg interface is up yet the RX always shows 0 bytes. I can ping the wg endpoint directly, so the internet is working.
I've also tried restarting the network (via
/etc/init.d/network) and bringing the wg iface down/up with luci and
ip. No luck.
The "fix" is to connect to a different wireguard endpoint. I do this by entering a different endpoint and public key in luci, then save the iface. After doing this traffic flows through the tunnel as expected. Finally, I change back to my preferred endpoint (the one that was configured on boot) and it continues to work as expected.
I find this mighty strange :\ What's the deal here?