Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

WireGuard quickstart

Featured Replies

57 minutes ago, CoZ said:

They monitor everything on this, inbound and outbound.

How? The nuts and bolts of the answer to how they accomplish this is needed to answer your question.

  • Replies 979
  • Views 431.7k
  • Created
  • Last Reply

Top Posters In This Topic

Most Popular Posts

  • Thanks for the quick writeup! I was scratching my head for a good 10 minutes until I realized I had to toggle Inactive to Active. Not sure why my mind read that as clicking inactive would inactivate i

  • I found if you do someething strange in the set up and hit apply, you will lose access to the server...you will not be able to ping it or load the interface.   to fix without rebooting after

  • I was having problems getting this all to work but I figured it out after about an hour.   I was able to connect to the vpn but was not able to connect to anything on my network or get an in

Posted Images

They are running device management "Blackberry UEM profile" that is pretty much tied into the whole device.  App installs are restricted, cellular data is monitored, etc...etc...

 

Even if it inhibits the snooping a bit, I'm happy.  Hence the reason for the questions.  I'm not trying to circumvent the whole thing, just if they no longer see what's being browsed, etc...etc... fine with me.

Edited by CoZ
clarification

Excuse the stupid question but if I have a openvpn .ovpn configuration file, can I use it with Wireguard or is Wireguard its own thing? I would like to have my Unraid server use my .ovpn file to connect using my own VPN provider. i.e. be a VPN client and have my VM use that interface/tunnel. I'm not looking for it to be a server. Is that possible with Wireguard?

 

On 1/27/2020 at 11:03 PM, FreeMan said:

Unfortunately, the update to 6.8.2 (on both servers) doesn't appear to have resolved my issue.

Same for me I am still unable to access my dockers when connected via Wiregard VPN.

7 hours ago, witalit said:

Same for me I am still unable to access my dockers when connected via Wiregard VPN.

 

 

So I just installed it and seemed to work (running pi-hole). I wonder if it is because I do have backup cloudflare dns servers listed? Any way to monitor which DNS everything goes through?

On 2/3/2020 at 5:49 PM, bonienl said:

 

 

 

Thanks let me give this a go tonight and report back.

Having problems. 

I connect to wg then the gui hangs and docker won't load or CA i have to reboot to get it back. 

I thought it could be a bad usb but it only seems to happen when i go near wg.

 

One thing i think is i some how misconfiguratied wg with the wrong ip range i left it at default. 

 

So I just got connected for a few mins could get to unriad gui over mobile network. Then nothing i disconnected and go back on wifi and docker,vm, most settings and CA just hang . I can't reboot atm as doing a parity rebuild. This has been happening since i have installed WG. 

 

So it dose seem to be something to do with WG causeing the hangs. I think . 

 

Any ideas thanks

Hello unraiders,

I followed the guide here and tried the troubleshooting steps, however I am still struggling a little to get wireguard working.

I have posted my setup here: Link to images of setup

Am I doing something quite stupid? I believe my DuckDns is working grand.

I am running pihole on a seperate server, if that matters?

 

Cheers

I am having the same problems others have had with handshakes.

 

10.0.1.2 is pi-hole/unbound running on a DietPi VM.

 

Tunnel setup:

I844343501_ScreenShot2020-02-17at16_48_17.thumb.png.acff8cd77cc296e8dc1780415af518cc.png

 

Peer setup:

451156858_ScreenShot2020-02-17at16_48_24.thumb.png.223dd5cb27c8610ea12c3309583045d0.png

 

Unifi setup:

490173180_ScreenShot2020-02-17at16_51_54.thumb.png.c51ca0f2f5a7671224cfcb4cdb9a3c00.png

This worked like a charm. I can now manage my home server from anywhere. Thanks for the write-up great job.

On 12/19/2019 at 10:48 PM, bonienl said:

Below an example configuration

It is mandatory to define a local endpoint (main server) and a peer endpoint (backup server). These endpoints can be a URL or a (public) IP address of the server.

 

When the main server is behind a NAT router then port forwarding must be set on the router.

The same is true for a NAT router used at the backup server (peer) side.

 

image.thumb.png.7e6cb358099a0330601f8533ec8b8165.png

@bonienl thanks for this screenshoot but this is only configuration for "main server", could you post screenshoot about "backup server" settings? I'm asking about it because I'm struggling with this for many hours.

I will be very grateful. Thank you.

  • Author

For those that are interested in LAN to LAN WireGuard connections:

 

Still no luck. my phone, for example, connects and gets an address and the DNS server. But I can't ping it from the interface and it doesn't actually work. I've tried all of the different variations of server to server, lan to lan, tunneled access, etc.

 

I just want to be able to log in and have it effectively act as if i was at home. But this gives no feedback and I have no idea what is going wrong.

  • Author
On 1/26/2020 at 10:35 AM, FreeMan said:

At the moment, the two servers are sitting side-by-side at my house, both on the same network (192.168.1.x).

I believe this is the problem. Once you establish the tunnel there are two routes for the servers to communicate and things get confused. The two servers need to be on different networks.

Okay - so I can connect to my unraid server if I use the IP address but not if I use tower.local.

 

So???? Is that normal?

  • Author
32 minutes ago, tknx said:

Okay - so I can connect to my unraid server if I use the IP address but not if I use tower.local.

 

So???? Is that normal?

Not sure exactly. Name resolution for a private network over VPN is messy, but you did provide a DNS server so it seems like it would work. Unless maybe .local doesn't route? I don't honestly know. 

 

As mentioned in OP, I add a hosts file to the client to make sure "tower" can resolve.

  • Author
On 2/1/2020 at 8:49 PM, frakman1 said:

Excuse the stupid question but if I have a openvpn .ovpn configuration file, can I use it with Wireguard or is Wireguard its own thing? I would like to have my Unraid server use my .ovpn file to connect using my own VPN provider. i.e. be a VPN client and have my VM use that interface/tunnel. I'm not looking for it to be a server. Is that possible with Wireguard?

 

WireGuard and OpenVPN do not share configuration files. They are very different.

 

It is possible to route your server's traffic through a WireGuard VPN Provider, more details here: 

 

OK, it is definitely a DNS related issue. If I set the DNS to my pi-hole/unbound, nothing resolves. If I set it to cloudflare, exterior sites like cnn.com work. But I can't get tower.local to work either way. I suppose I could use a hosts file to maybe redirect appropriately, but frankly that is just another thing to maintain and I am actually hoping to eventually figure out how to use some sort of IPAM.

 

So... for now, I'd still like to see about getting local addresses and routing through my pi-hole to work.

Edited by tknx

  • Author

I'd guess that your VPN clients are unable to access the pi-hole VM at all.

 

I have the same problem, where clients connecting to WireGuard VPN on my main Unraid system are unable to communicate with a second install of Unraid running in a VM. Haven't figured that one out yet.

On 2/13/2020 at 9:15 PM, STABILO-BOSS said:

Hello unraiders,

I followed the guide here and tried the troubleshooting steps, however I am still struggling a little to get wireguard working.

I have posted my setup here: Link to images of setup

Am I doing something quite stupid? I believe my DuckDns is working grand.

I am running pihole on a seperate server, if that matters?

 

Cheers

Hey, just wondered if anyone could help point me in the right direction, regarding my previous post. I have since tried wiping the settings and going again, but I still get no connection at all. When I connect my phone, I get no handshake.

Just posting for some help

 

Wireguard setup as per the guide with Phone and Laptops as clients.

 

The phone works great, able to access LAN via wireguard perfectly.

Laptop (WIndows 10), not so great.  A connection is made and handshake recieved, however I cannot access any IPs on my LAN (inluding Unriad. Dockers), just times outs.

 

Whats going woring, I have both the Phone and Laptop client files setup identically.  WHy is the phone working perfectly, but the laptop not?

 

 

  • Author
5 hours ago, quinctilius said:

Just posting for some help

 

Wireguard setup as per the guide with Phone and Laptops as clients.

 

The phone works great, able to access LAN via wireguard perfectly.

Laptop (WIndows 10), not so great.  A connection is made and handshake recieved, however I cannot access any IPs on my LAN (inluding Unriad. Dockers), just times outs.

 

Whats going woring, I have both the Phone and Laptop client files setup identically.  WHy is the phone working perfectly, but the laptop not?

I'm assuming your phone is connecting via data and not wifi, that eliminates any local network issues.

 

What about the laptop? Is it already on the same network as the server? If so, that won't work. The laptop needs to be on a different network (perhaps you could use your phone as a hotspot to test with)

12 minutes ago, ljm42 said:

I'm assuming your phone is connecting via data and not wifi, that eliminates any local network issues.

 

What about the laptop? Is it already on the same network as the server? If so, that won't work. The laptop needs to be on a different network (perhaps you could use your phone as a hotspot to test with)

As I was writing this, I have solved the issue!!!

 

I was using my phone data as a hotspot Wifi to test my Wireguard setup.

 

I have just tried on my works Wifi, and it seems to be working.  So please excuse my complete incompetence, although still don't know why my Laptop Wireguard won't work over my phones data connection, but the phone it self does???

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.