JonathanM Posted February 1, 2020 Share Posted February 1, 2020 57 minutes ago, CoZ said: They monitor everything on this, inbound and outbound. How? The nuts and bolts of the answer to how they accomplish this is needed to answer your question. Quote Link to comment
CoZ Posted February 1, 2020 Share Posted February 1, 2020 (edited) They are running device management "Blackberry UEM profile" that is pretty much tied into the whole device. App installs are restricted, cellular data is monitored, etc...etc... Even if it inhibits the snooping a bit, I'm happy. Hence the reason for the questions. I'm not trying to circumvent the whole thing, just if they no longer see what's being browsed, etc...etc... fine with me. Edited February 1, 2020 by CoZ clarification Quote Link to comment
frakman1 Posted February 2, 2020 Share Posted February 2, 2020 Excuse the stupid question but if I have a openvpn .ovpn configuration file, can I use it with Wireguard or is Wireguard its own thing? I would like to have my Unraid server use my .ovpn file to connect using my own VPN provider. i.e. be a VPN client and have my VM use that interface/tunnel. I'm not looking for it to be a server. Is that possible with Wireguard? Quote Link to comment
witalit Posted February 3, 2020 Share Posted February 3, 2020 On 1/27/2020 at 11:03 PM, FreeMan said: Unfortunately, the update to 6.8.2 (on both servers) doesn't appear to have resolved my issue. Same for me I am still unable to access my dockers when connected via Wiregard VPN. Quote Link to comment
bonienl Posted February 3, 2020 Share Posted February 3, 2020 7 hours ago, witalit said: Same for me I am still unable to access my dockers when connected via Wiregard VPN. Quote Link to comment
tknx Posted February 4, 2020 Share Posted February 4, 2020 So I just installed it and seemed to work (running pi-hole). I wonder if it is because I do have backup cloudflare dns servers listed? Any way to monitor which DNS everything goes through? Quote Link to comment
witalit Posted February 5, 2020 Share Posted February 5, 2020 On 2/3/2020 at 5:49 PM, bonienl said: Thanks let me give this a go tonight and report back. Quote Link to comment
capduncan Posted February 7, 2020 Share Posted February 7, 2020 Having problems. I connect to wg then the gui hangs and docker won't load or CA i have to reboot to get it back. I thought it could be a bad usb but it only seems to happen when i go near wg. Quote Link to comment
capduncan Posted February 7, 2020 Share Posted February 7, 2020 One thing i think is i some how misconfiguratied wg with the wrong ip range i left it at default. So I just got connected for a few mins could get to unriad gui over mobile network. Then nothing i disconnected and go back on wifi and docker,vm, most settings and CA just hang . I can't reboot atm as doing a parity rebuild. This has been happening since i have installed WG. So it dose seem to be something to do with WG causeing the hangs. I think . Any ideas thanks Quote Link to comment
STABILO-BOSS Posted February 13, 2020 Share Posted February 13, 2020 Hello unraiders, I followed the guide here and tried the troubleshooting steps, however I am still struggling a little to get wireguard working. I have posted my setup here: Link to images of setup Am I doing something quite stupid? I believe my DuckDns is working grand. I am running pihole on a seperate server, if that matters? Cheers Quote Link to comment
tknx Posted February 18, 2020 Share Posted February 18, 2020 I am having the same problems others have had with handshakes. 10.0.1.2 is pi-hole/unbound running on a DietPi VM. Tunnel setup: I Peer setup: Unifi setup: Quote Link to comment
cn8621 Posted February 18, 2020 Share Posted February 18, 2020 This worked like a charm. I can now manage my home server from anywhere. Thanks for the write-up great job. Quote Link to comment
w^w Posted February 20, 2020 Share Posted February 20, 2020 On 12/19/2019 at 10:48 PM, bonienl said: Below an example configuration It is mandatory to define a local endpoint (main server) and a peer endpoint (backup server). These endpoints can be a URL or a (public) IP address of the server. When the main server is behind a NAT router then port forwarding must be set on the router. The same is true for a NAT router used at the backup server (peer) side. @bonienl thanks for this screenshoot but this is only configuration for "main server", could you post screenshoot about "backup server" settings? I'm asking about it because I'm struggling with this for many hours. I will be very grateful. Thank you. Quote Link to comment
ljm42 Posted February 21, 2020 Author Share Posted February 21, 2020 For those that are interested in LAN to LAN WireGuard connections: Quote Link to comment
tknx Posted February 22, 2020 Share Posted February 22, 2020 Still no luck. my phone, for example, connects and gets an address and the DNS server. But I can't ping it from the interface and it doesn't actually work. I've tried all of the different variations of server to server, lan to lan, tunneled access, etc. I just want to be able to log in and have it effectively act as if i was at home. But this gives no feedback and I have no idea what is going wrong. Quote Link to comment
ljm42 Posted February 22, 2020 Author Share Posted February 22, 2020 On 1/26/2020 at 10:35 AM, FreeMan said: At the moment, the two servers are sitting side-by-side at my house, both on the same network (192.168.1.x). I believe this is the problem. Once you establish the tunnel there are two routes for the servers to communicate and things get confused. The two servers need to be on different networks. Quote Link to comment
tknx Posted February 22, 2020 Share Posted February 22, 2020 Okay - so I can connect to my unraid server if I use the IP address but not if I use tower.local. So???? Is that normal? Quote Link to comment
ljm42 Posted February 22, 2020 Author Share Posted February 22, 2020 32 minutes ago, tknx said: Okay - so I can connect to my unraid server if I use the IP address but not if I use tower.local. So???? Is that normal? Not sure exactly. Name resolution for a private network over VPN is messy, but you did provide a DNS server so it seems like it would work. Unless maybe .local doesn't route? I don't honestly know. As mentioned in OP, I add a hosts file to the client to make sure "tower" can resolve. Quote Link to comment
ljm42 Posted February 22, 2020 Author Share Posted February 22, 2020 On 2/1/2020 at 8:49 PM, frakman1 said: Excuse the stupid question but if I have a openvpn .ovpn configuration file, can I use it with Wireguard or is Wireguard its own thing? I would like to have my Unraid server use my .ovpn file to connect using my own VPN provider. i.e. be a VPN client and have my VM use that interface/tunnel. I'm not looking for it to be a server. Is that possible with Wireguard? WireGuard and OpenVPN do not share configuration files. They are very different. It is possible to route your server's traffic through a WireGuard VPN Provider, more details here: Quote Link to comment
tknx Posted February 22, 2020 Share Posted February 22, 2020 (edited) OK, it is definitely a DNS related issue. If I set the DNS to my pi-hole/unbound, nothing resolves. If I set it to cloudflare, exterior sites like cnn.com work. But I can't get tower.local to work either way. I suppose I could use a hosts file to maybe redirect appropriately, but frankly that is just another thing to maintain and I am actually hoping to eventually figure out how to use some sort of IPAM. So... for now, I'd still like to see about getting local addresses and routing through my pi-hole to work. Edited February 22, 2020 by tknx Quote Link to comment
ljm42 Posted February 22, 2020 Author Share Posted February 22, 2020 I'd guess that your VPN clients are unable to access the pi-hole VM at all. I have the same problem, where clients connecting to WireGuard VPN on my main Unraid system are unable to communicate with a second install of Unraid running in a VM. Haven't figured that one out yet. Quote Link to comment
STABILO-BOSS Posted February 25, 2020 Share Posted February 25, 2020 On 2/13/2020 at 9:15 PM, STABILO-BOSS said: Hello unraiders, I followed the guide here and tried the troubleshooting steps, however I am still struggling a little to get wireguard working. I have posted my setup here: Link to images of setup Am I doing something quite stupid? I believe my DuckDns is working grand. I am running pihole on a seperate server, if that matters? Cheers Hey, just wondered if anyone could help point me in the right direction, regarding my previous post. I have since tried wiping the settings and going again, but I still get no connection at all. When I connect my phone, I get no handshake. Quote Link to comment
quinctilius Posted February 26, 2020 Share Posted February 26, 2020 Just posting for some help Wireguard setup as per the guide with Phone and Laptops as clients. The phone works great, able to access LAN via wireguard perfectly. Laptop (WIndows 10), not so great. A connection is made and handshake recieved, however I cannot access any IPs on my LAN (inluding Unriad. Dockers), just times outs. Whats going woring, I have both the Phone and Laptop client files setup identically. WHy is the phone working perfectly, but the laptop not? Quote Link to comment
ljm42 Posted February 27, 2020 Author Share Posted February 27, 2020 5 hours ago, quinctilius said: Just posting for some help Wireguard setup as per the guide with Phone and Laptops as clients. The phone works great, able to access LAN via wireguard perfectly. Laptop (WIndows 10), not so great. A connection is made and handshake recieved, however I cannot access any IPs on my LAN (inluding Unriad. Dockers), just times outs. Whats going woring, I have both the Phone and Laptop client files setup identically. WHy is the phone working perfectly, but the laptop not? I'm assuming your phone is connecting via data and not wifi, that eliminates any local network issues. What about the laptop? Is it already on the same network as the server? If so, that won't work. The laptop needs to be on a different network (perhaps you could use your phone as a hotspot to test with) Quote Link to comment
quinctilius Posted February 27, 2020 Share Posted February 27, 2020 12 minutes ago, ljm42 said: I'm assuming your phone is connecting via data and not wifi, that eliminates any local network issues. What about the laptop? Is it already on the same network as the server? If so, that won't work. The laptop needs to be on a different network (perhaps you could use your phone as a hotspot to test with) As I was writing this, I have solved the issue!!! I was using my phone data as a hotspot Wifi to test my Wireguard setup. I have just tried on my works Wifi, and it seems to be working. So please excuse my complete incompetence, although still don't know why my Laptop Wireguard won't work over my phones data connection, but the phone it self does??? Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.