In a nutshell,
a. you use a third party VPN provider for one or more subnets going out wireguard.
b. you also have servers on the LAN that
(i) internal users use Q1. How do you prefer internal users access server ( by direct LANIP ?)
(ii) external users use Q2. How do external users access the server ( by dyndns URL or by static WANIP )
In attempting to do both, the problem is you send traffic from the servers out the wireguard tunnel and not
a. back to internal users YES/NO ?
b. back to external users NO based on your input.
It is not clear how you are sending folks out the door to Wireguard but Q. would you agree that the servers have no need to go out wireguard.These servers are replying to users from the LAN and the WAN only.
Hence whatever method you are using, to send traffic into the wireguard tunnel, needs to be modified to ensure traffic to and from the servers is executed prior to traffic going out wireguard.
There are tools and methods to do so. Which reference are you using to set this up??
The pictures tell me almost nothing, a full export of the config and a network diagram would be more helpful.
/export file=anynameyouwish ( minus router serial number, public WANIP information, keys etc..)
a. you use a third party VPN provider for one or more subnets going out wireguard.
b. you also have servers on the LAN that
(i) internal users use Q1. How do you prefer internal users access server ( by direct LANIP ?)
(ii) external users use Q2. How do external users access the server ( by dyndns URL or by static WANIP )
In attempting to do both, the problem is you send traffic from the servers out the wireguard tunnel and not
a. back to internal users YES/NO ?
b. back to external users NO based on your input.
It is not clear how you are sending folks out the door to Wireguard but Q. would you agree that the servers have no need to go out wireguard.These servers are replying to users from the LAN and the WAN only.
Hence whatever method you are using, to send traffic into the wireguard tunnel, needs to be modified to ensure traffic to and from the servers is executed prior to traffic going out wireguard.
There are tools and methods to do so. Which reference are you using to set this up??
The pictures tell me almost nothing, a full export of the config and a network diagram would be more helpful.
/export file=anynameyouwish ( minus router serial number, public WANIP information, keys etc..)
Statistics: Posted by anav — Fri Jan 19, 2024 12:58 am