Hello everybody!
At the moment I'm trying to make my home network reachable from the outside, so I can manage my computers and the router. Until now I'm able to connect to the router, ping the router wireguard IP and the router LAN IP, but when I try to ping a computer in the LAN behind the router it doesn't go through. All I need is a SSH connection through the tunnel to use VNC if necessary.
I followed this OpenWRT wiki, this external tutorial and the Arch Wiki WG netctl.
root@OpenWrt:~# ip r
default via 10.10.10.254 dev eth0.2 proto static src 10.10.10.18 # WAN double NATed, can't do anything about it
10.10.10.0/24 dev eth0.2 proto kernel scope link src 10.10.10.18
10.11.11.0/24 dev WGOWRT proto kernel scope link src 10.11.11.11 # WG
192.168.2.0/24 dev br-lan proto kernel scope link src 192.168.2.1
The Arch Wiki says that I've to enable IP forwarding, to be able to reach the LAN. So I tried again the OpenWRT Wiki, specifically the part about 'Add route to server side LAN on VPN client. '
uci set network.wgserver.route_allowed_ips="1"
uci add_list network.wgserver.allowed_ips="192.168.1.0/24"
uci commit network
/etc/init.d/network restart
The problem now is this
root@OpenWrt:~# uci add_list network.wgserver.allowed_ips="192.168.2.0/24"
uci: Invalid argument
So how should I set the route so my computers on the LAN are reachable via WG?