WireGuard, VPN, Routing

Hello everyone,

I don't understand the routing in connection with WireGuard.

The tunnel is established reliably (according to the display in LUCI) but no packets go through the tunnel.
I want only the data to the peer to go through the tunnel, not the rest of the data traffic to the Internet. Therefore I have done the following:
uci del_list network.wgserver.allowed_ips="0.0.0.0/0"
uci del_list network.wgserver.allowed_ips="::/0"
uci commit network

Now I have the following kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.20.254 0.0.0.0 UG 0 0 0 0 eth0.2
192.168.20.0 * 255.255.255.0 U 0 0 0 0 eth0.2
192.168.9.0 * 255.255.255.0 U 0 0 0 0 vpn
192.168.180.0 * 255.255.255.0 U 0 0 0 br-lan

(eth0.2 = WAN, br-lan=LAN))

Which route do I have to enter to reach devices in the network 192.168.90.0/24 (WireGuard remote side)?

Many thanks for your help

1 Like
uci set network.wgserver.route_allowed_ips="1"
uci add_list network.wgserver.allowed_ips="192.168.90.0/24"
uci commit network
service network restart

If the issue persists, check the handshake and firewall settings on the remote side.

2 Likes