Wireguard + OpenWRT = No SSL/TLS

Hello,
I'm trying out wireguard on my openwrt setup.

I have had troubles connecting to iCloud Mail and appleid.apple.com as well as resolving DNS queries using tls like tls://1.1.1.1
Otherwise, everything seems to work fine.

Here's what I tried:
Same wireguard servers on wireguard ios = Everything, including tls, works
Same network setup without wireguard = Everything, including tls, works
Same network setup with OpenVPN on Openwrt = Everything, including tls, works

So it seems that for some reason openwrt is not allowing TLS when connected through wireguard.

I tried:
Forwarding port 443
DMZ
Changing wireguard server

All failed.
Please help.

Here's my setup:
Modem provides wan ip --> OpenWRT router --> Main router for all the devices

There's a single LAN line from Modem to WAN OpenWRT with a DMZ to the OpenWRT.
There's a single LAN line from OpenWRT to WAN main router with a DMZ to the main router. (I tried switching off the DMZ but did not make a difference)
I tried connecting directly to the OpenWRT router via wifi and arrived to the same results.

Solved: I solved this by enabling "MSS Clamping" on my Wireguard Zone

I solved this by enabling "MSS Clamping" on my Wireguard Zone

1 Like

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.