Thats because your rule is not correct.
Lets work through the logic!
a. the input chain rule for wireguard permits the handshake and makes the tunnel happen between the android phone and the MT.
Once connected think of the phone basically parallel to the LAN............
b. to allow the phone to subnets on the router one example of many:
add action=accept chain=forward in-interface=wireguardRB dst-address=subnet
c. to allow the phone to access the router ( aka winbox it or phone APP in ).
Its like any other access.
add action=accept chain=input in-interface=wireguardRB
OR
add action=accept chain=input in-interface=wireguardRB src-address=192.168.68.2
OR
add action=accept chain=input src-address=192.168.68.2
DONE!!!
No need for ports or any other stuff....
The real trick is that to access winbox, once the tunnel is up, type the following into your phone app!! or winbox on a pc..........
192.168.68.1:winboxPort#
Lets work through the logic!
a. the input chain rule for wireguard permits the handshake and makes the tunnel happen between the android phone and the MT.
Once connected think of the phone basically parallel to the LAN............
b. to allow the phone to subnets on the router one example of many:
add action=accept chain=forward in-interface=wireguardRB dst-address=subnet
c. to allow the phone to access the router ( aka winbox it or phone APP in ).
Its like any other access.
add action=accept chain=input in-interface=wireguardRB
OR
add action=accept chain=input in-interface=wireguardRB src-address=192.168.68.2
OR
add action=accept chain=input src-address=192.168.68.2
DONE!!!
No need for ports or any other stuff....
The real trick is that to access winbox, once the tunnel is up, type the following into your phone app!! or winbox on a pc..........
192.168.68.1:winboxPort#
Statistics: Posted by Mesquite — Thu Feb 22, 2024 3:59 am