deaton.dg

Hi! I am struggling to get my Wireguard client to access the internet through my VPN. With my client, I can ping my Unraid server, ping docker containers, ping other devices on my LAN, and use my local DNS resolver to correctly resolve hosts. From other devices on my LAN, I can ping my client through its VPN address. From my Unraid server, I can connect to the internet. However, I cannot connect to the internet from my client (I cannot ping 8.8.8.8) or connect to my LAN through its external IP. My Wireguard configuration is attached as an image. I have enabled Host access to custom networks in my docker settings. I have created the static route and port forward in my router (Archer C8). Update: I got a traceroute to 8.8.8.8 from my client. The connection goes to my Unraid server’s address in wg0 (192.168.1.1) then to my router (192.168.0.1). So I suppose that my router is probably refusing to forward/NAT traffic outside my LAN subnet. Connections to addresses on my LAN don’t need to go through my router, so it makes sense I could only get to those addresses. Any help would still be appreciated. Update 2: It was in fact my router’s fault. Unfortunately, on the Archer C8, there is no way to get into the configs and allow it to forward packets outside the LAN subnet. I also can’t find any CFW for the C8v4 either, so that kinda sucks. If anyone else runs into this same issue (doubtful), the solution is to host the DHCP server off of the router. Then, you can set the DHCP subnet and the subnet the router uses separately. Update 3: To be clear, on the Archer C8v4, you need to set the LAN subnet to contain both the desired LAN subnet (e.g. 192.168.0.1/24) and the Wireguard subnet (e.g. 192.168.1.1/24). I tell the Archer to use 192.168.0.1/16. Then, your DHCP server should give out the desired LAN subnet (e.g. 192.168.0.1/24). I only say this because I hit the same problem again, forgot the solution, and then became confused as to why I was saying DHCP servers had anything to do with it.