Comments (7)
sginestrini
commented on July 18, 2024
1
Problem found. It was my fault: I wrote dudkdns.com instade of duckdns.org in the config of the haddon 🤭
from addon-wireguard-client.
bigmoby
commented on July 18, 2024
Hi @sginestrini ,
both of these configurations
interface:
private_key: _privatekeyA
address: 10.50.138.2
dns:
- 8.8.8.8
- 8.8.4.4
post_up: >-
iptables -t nat -A POSTROUTING -o wg0 -j MASQUERADE; iptables -A FORWARD -p
tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
post_down: >-
iptables -t nat -D POSTROUTING -o wg0 -j MASQUERADE; iptables -D FORWARD -p
tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
mtu: 1420
peers:
- public_key: _publickA
pre_shared_key: _presharedKey
endpoint: domain.duckdns.com:51820
allowed_ips:
- 10.50.138.0/24
persistent_keep_alive: "25"
log_level: debug
and
[Interface]
PrivateKey = _privatekeyB
Address = 10.50.138.1/24
MTU = 1420
ListenPort = 51820
### begin homeassistanthost ###
[Peer]
PublicKey = _publickB
PresharedKey = _presharedKey
AllowedIPs = 10.50.138.2/32
### end homeassistanthost ###
appear to be correct. What's GC /etc/wireguard/configs/homeassistanthost.conf config file? It's not useful for your purpose, you've already the add-on configuration.
Please check on Google Cloud (I suppose GC stands for it...) firewall section and in your modem configuration too.
from addon-wireguard-client.
sginestrini
commented on July 18, 2024
Hi @bigmoby ,
Exactly, I used GC for Google Cloud.
GC /etc/wireguard/configs/homeassistanthost.conf is the original file from which /home/user/configs/homeassistanthost.conf was copied. I thought was good to know, don't know if it's a problem to have differences on allowed_ips different between this file and the config on the client.
GC firewall is correctly configured from the commands
$ gcloud compute firewall-rules create wireguardrule --allow udp:51820
$ gcloud compute firewall-rules list
My modem configuration seems good (it was the same I used with HACore where it was working)
Do I need to setup http.trusted_proxies into configuration.yaml? Now is disabled but I also tried that by setting ip of the GC server and/or wireguard server ips.
Thanks
from addon-wireguard-client.
bigmoby
commented on July 18, 2024
Hi @sginestrini
ok GC seems to be ok. Have you tried to connect to your Wireguard master peer from your smartphone or any other device or pc? So we could analize the problem in the first half part...
from addon-wireguard-client.
sginestrini
commented on July 18, 2024
I've tryied with my smartphone, it's working good. The only difference in the config are the allowed_ips, on my smartphone it's set as default to 0.0.0.0/0 , ::/0 as I had on HA Core. With these setting I'm seeing rx/tx data from the wireguard app and from google cloud wg clients. If I set allowed_ips to 10.50.138.0/24 they disappear but I can still use internet, from the log can't see anything useful
from addon-wireguard-client.
bigmoby
commented on July 18, 2024
Please analize the wg.conf created inside the add-on docker container, and check if appears right...or wrong.
from addon-wireguard-client.
sginestrini
commented on July 18, 2024
Same as addon config except for:
interface:
private_key: pk
address: 10.50.138.2**/24**
from addon-wireguard-client.
Related Issues (20)
- problems installing Wireguard client on HACS HOT 1
- It won't hold the connection to wireguard. HOT 4
- connecting to non-default wg port not possible HOT 4
- Need to create multiple peers in wireguard client under home assistant HOT 9
- Remote HomeAssistant Break after update to 0.2.0 HOT 11
- no local connect HOT 1
- After adding the reposity and refreshing the add-on store I cannot find the wireguard client HOT 4
- Problem connecting to wireguard server HOT 3
- no handshake over IPv6 HOT 1
- set MTU size HOT 1
- Extremely slow connection between server and client HOT 2
- [TUN] [wg_server] No valid endpoint has been configured or discovered for peer 3 HOT 7
- JSON format HOT 2
- Connecting to HomeAssistant UI via WireGuard Client HOT 4
- Home-Assistant working as a NAT Server for VPN client connection HOT 1
- HA seems not accessible from inside vpn HOT 2
- IP masquerading not working correctly HOT 4
- Core updates will fail -- Solution: disable WireGuard HOT 1
- WireGuard client status API - change port HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from addon-wireguard-client.