WireGuard - Port Forwarding dont work

[tobistar3]

Good Evening,

 

i have installed the WireGuard Plguin but i cant get it working...

 

i tryed it with the default params but iam not able to open the port in my pfsense router

 

maybe it is a problem with my nestet nat (i know thats not realy good but i have no choice)

This is my network:

 

and  here my settings on unraid

 

my dyndns works because i can reach my docker container via letsencrypt docker container.

 

Here my PFsense conf:

 

First i tried the default port but thats the same thing.

Nmap from an outside server shows "filtered"

 

Maybe someone can help me

 

Thanks

 

 

[bonienl]

Since your Fritzbox is connected to the Internet, it needs to do port forwarding as well before it can reach the pfsense firewall.

 

[tobistar3]

my fritz box has "exposet host" active to the PFsense router

[bonienl]

4 minutes ago, tobistar3 said:

my fritz box has "exposet host" active to the PFsense router

You are sure outside traffic can reach the pfsense box?

I am not using pfsense myself, but maybe it has logging capabilities to see what comes in at the WAN side and what gets blocked

Edited December 11, 2019 by bonienl

[tobistar3]

yes as i wrote i can reach my docker container through my pfsense on the unraid server

[bonienl]

Is the pfsense firewall a physical device or a docker container running on your server (or something else)?

[tobistar3]

its a physical device

[bonienl]

Your pfsense config looks alright to me. The only thing not applicable is NAT reflection. I would switch that off.

 

I have not tested WireGuard with double NAT, and don't know if this breaks the tunnel.

 

[tobistar3]

Ok thanks i try it tomorrow