search

EmbarkStudios / wg-ui

WireGuard Web UI for self-serve client configurations, with optional auth.
Apache License 2.0
1.49k stars 129 forks source link

netfilter rules not created on clearlinux #12

Open engel75 opened 4 years ago

engel75 commented 4 years ago

Describe the bug I was able to build wireguard-ui on a ubuntu 18.04 system using buildah. But I would like to use clealinux to run it. Clearlinux got all kernel modules included and uses netfilter. But it looks like wireguard.ui does not create any netfilter rules.

To Reproduce Steps to reproduce the behavior:

  1. Copy go binary to any clealinux VM (amd64)
  2. Start binary like ./wireguard-ui --listen-address=":80" --wg-endpoint="wireguard.xxxxxxx.xxx:51820" --nat-device="ens3" --data-dir="/srv" --log-level=debug
  3. check netfilter with nft tables list
  4. ping from client to any network on ens3 is not working

Expected behavior There should be netfilter rules enabling NAT and MASQUARADE.

Screenshots

Device:

Additional context

suom1 commented 4 years ago

This is not a bug, as netfilter and nftables are different things. Could be a good feature to add support for netfilter also.