Working only one way

Tue Apr 10 15:16:16 CEST 2018

Jajajajaj sorry and sorry.. that's was the problem (the server interface with .0), ufff now is working, thanks... I love this new VPN, is so easy to configure. I have a question, I'm new in WireGuard:

1 - Can I change the length (to 4096 bits for example) of private key? or is not neccesary, I am a little paranoic with this kind of security cipher.

----- Mensaje original -----
De: "Eric Light" <eric at ericlight.com>
Para: "wireguard" <wireguard at lists.zx2c4.com>
Enviados: Lunes, 9 de Abril 2018 17:43:19
Asunto: Re: Working only one way

Hi Luis,

Welcome!

I would change your server Interface address to .1/24; .0/24 would be the network address so would probably behave poorly.

Then I'd change your client Interface address to a /24 as well.  I think because the scope of that interface is /32, the routing table is probably not sending packets down your wireguard route.

E

--------------------------------------------
Q: Why is this email five sentences or less?
A: http://five.sentenc.es

On Tue, 10 Apr 2018, at 08:17, Ing. Luis Felipe Domínguez Vega wrote:
> Hello people, i currently installed wireguard (So easy !!!!!!), but i 
> have a problem i have ping from server -> client, but not client -> 
> server, when in server I execute tcpdump -i empresa only i see ICMP 
> request and not response: 
> 
> Config server: 
> ************************************
> [Interface] 
> Address = 10.11.2.0/24 
> SaveConfig = true 
> ListenPort = 51820 
> PrivateKey = -------- 
> 
> [Peer] 
> PublicKey = hgwZKihI4axZZwoWPsucpX+rZMo6dEhnJgb7ulZmzDE= 
> AllowedIPs = 10.11.2.2/32 
> Endpoint = 192.168.0.215:59160
> 
> 
> Config client: 
> ************************************
> [Interface]
> PrivateKey = -------- 
> Address = 10.11.2.2/32
> 
> [Peer]
> PublicKey = v+5UJACf6odzR4ct0vPheVaaKpIdEMjqa9SECloq5CE=
> Endpoint = 192.168.0.251:51820
> AllowedIPs = 10.11.2.0/24
> 
> 
> 
> 
> Routing in server:
> ------------------
> default via 192.168.0.254 dev enp1s0 onlink 
> 10.11.2.0/24 dev empresa proto kernel scope link src 10.11.2.0 
> 192.168.0.0/24 dev enp1s0 proto kernel scope link src 192.168.0.251
> 
> Routing in client:
> ------------------
> default via 192.168.0.254 dev enp3s0 proto static metric 100 
> 10.8.0.0/24 via 10.11.0.57 dev enp5s0 proto static metric 100 
> 10.9.0.0/24 via 10.11.0.57 dev enp5s0 proto static metric 100 
> 10.11.0.0/24 dev enp5s0 proto kernel scope link src 10.11.0.61 metric 100 
> 10.11.2.0/24 dev empresa-vpn scope link 
> 172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 
> 192.168.0.0/24 dev enp3s0 proto kernel scope link src 192.168.0.215 metric 100 
> 192.168.44.0/24 via 10.11.0.254 dev enp5s0 proto static metric 100
> 
> 
> 
> 
> -- 
> Luis Felipe Dominguez Vega 
> System Administration in Desoft Matanzas | Mob: [ tel:+5353694785 | 
> +5353694785 ] | [ http://www.desoft.cu/ | www.desoft.cu ] 
> [ https://www.facebook.com/lfdominguez0104 |    ] 
> [ https://www.linkedin.com/in/luis-felipe-dom%C3%ADnguez-vega-47725794/ 
> |    ] [ https://twitter.com/LuisFelipeDV1 |    ]
> XVII CONVENCIÓN Y FERIA INTERNACIONAL: INFORMÁTICA 2018. En La Habana, 
> Cuba, del 19 al 23 de marzo
> 
> _______________________________________________
> WireGuard mailing list
> WireGuard at lists.zx2c4.com
> https://lists.zx2c4.com/mailman/listinfo/wireguard
_______________________________________________
WireGuard mailing list
WireGuard at lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard
-- 
Luis Felipe Dominguez Vega 
System Administration in Desoft Matanzas | Mob: [ tel:+5353694785 | +5353694785 ] | [ http://www.desoft.cu/ | www.desoft.cu ] 
[ https://www.facebook.com/lfdominguez0104 |    ] [ https://www.linkedin.com/in/luis-felipe-dom%C3%ADnguez-vega-47725794/ |    ] [ https://twitter.com/LuisFelipeDV1 |    ]
XVII CONVENCIÓN Y FERIA INTERNACIONAL: INFORMÁTICA 2018. En La Habana, Cuba, del 19 al 23 de marzo