WireGuard server no handshake

PeterSonDK · December 8, 2021, 9:32am

Remove it Admins ...... please

vgaetera · December 8, 2021, 9:48am

This typically means the handshake between the server and client fails.
The most common cause is CGNAT or human-related errors/typos.

PeterSonDK · December 8, 2021, 9:51am

what that means?

vgaetera · December 8, 2021, 9:53am

PeterSonDK · December 8, 2021, 9:54am

but the interface is RX and TX 0 even on the local?

vgaetera · December 8, 2021, 9:57am

To test locally, you must change the endpoint in the client config to LAN IP of the server.

PeterSonDK · December 8, 2021, 9:59am

the interface should before any changes connect to the LAN, right?

vgaetera · December 8, 2021, 10:02am

The screenshot looks normal, but not really helpful for troubleshooting.

PeterSonDK · December 8, 2021, 10:07am

kernel scope link src 192.168.9.1
root@OpenWrtLinkSys:~#

krazeh · December 8, 2021, 10:11am

Have you tried connecting a client? What you've just posted would indicate there's not been a handshake which either means you've not tried connecting a client or the connection has failed (usually because it's being blocked at the firewall or the keys are wrong).

vgaetera · December 8, 2021, 10:17am

You'd best use the automated script to avoid human-related errors/typos:
https://openwrt.org/docs/guide-user/services/vpn/wireguard/extras#automated

Transfer the generated VPN profile and import it on the client.
This should at least give you a handshake and working VPN/LAN access.

PeterSonDK · December 8, 2021, 10:19am

The automatic script do the same as wrote above
https://raw.githubusercontent.com/onemarcfifty/openwrt-scripts/master/wireguard_install.sh

PeterSonDK · December 8, 2021, 10:20am

If the interface RX TX are 0, what you expect from the client?
Yes created the client and Connect but NO connection.

vgaetera · December 8, 2021, 10:21am

That's just part of the script, it should also generate the proper client profiles.

PeterSonDK · December 8, 2021, 10:23am

ignore the client right now. i'm not a fan of try this and try this scripts. The wiki article should create the interface with connection fist. But it doesn't. maybe article is wrong

krazeh · December 8, 2021, 10:25am

You can't ignore the client. Unless you have something connected to the server there is no connection. If all you've done is create the server side then it's perfectly normal for it to have no sent or received traffic.

PeterSonDK · December 8, 2021, 10:26am

the interface if 0 then the client is also the same. Tell me is the article in wiki wrong?

krazeh · December 8, 2021, 10:28am

The wiki is fine. It works. What exactly have you done aside from setting up the server side? Have you set up a client device? Have you tried to connect the client device to the server? Was that connection attempt made from within your internal network or externally?

PeterSonDK · December 8, 2021, 10:29am

Yes the connect is created 100% but no connection and RX TX is ZERO.

krazeh · December 8, 2021, 10:30am

If you want to get some help you need to actually answer the questions we're asking...

So, again, what exactly have you done aside from setting up the server side? Have you set up a client device? Have you tried to connect the client device to the server? Was that connection attempt made from within your internal network or externally?