Site to site

[IsaacBreuer]

Just a question How do I get this to work as site to site. I have finally configured it, works great from client to server or client to any device on server lan But cannot get ot to work from other devices on lan to see client. Tried adding route to wg0 on server , but getting messgae required key not available when doing raceroute

[NHAS]

Hi there.

Wag is not really designed to be used as a site to site vpn.

I would suggest using manual wireguard (such as wg-quick and a profile) to set up another wireguard tun device and the routes you require from your wag server to your external site.

However if you wanted to do this in wag.

Add a client with an any/any rule to allow all traffic to touch it.

I.e register a client, get it's ip then add the client ip to your list of allows allowing traffic to it.

[IsaacBreuer]

The rules are setup already and client can access all devices on servers lan,

My issue is with other devices on servers lan cannot see client, Look like the WG interface does not allow traffic from eh0

[NHAS]

For servers in another lan to access clients you will have to turn off natting on wag and manually insert iptables rules and routes in order to allow routing to your clients.