Unifi WireGuard VPN setup
Рет қаралды 97,121
Күн бұрынIn this video we go through the setup of wireguard with our UDM SE. I create the vpn , firewall rules and do some testing
Wireguard clients:
www.wireguard.com/install/
▶ Hire us on our website
mactelecomnetworks.com/
▶ Support the channel and my videos
Ko-fi.com/mactelecomnetworks
▶ Find me on Twitch
/ frozil3
▶ Check out my gaming KZbin
/ @frozilegaming
▶Contact me on email:
cody@mactelecomnetworks.com
------------------------------------------------------------------------------------
Affiliates I use:
▶ VOIP.MS
www.voip.ms/en/code/Mactelecom
▶Canadian Amazon Store front:
www.amazon.ca/shop/mactelecom...
▶USA Amazon store front:
www.amazon.com/shop/macteleco...
------------------------------------------------------------------------------------
▶ Find us on social media:
▶ Instagram:
/ mactelecomnetworks
▶ Facebook:
/ mactelecomnetworks
▶ Twitter:
/ mactelecomn
▶ TikTok:
/ mactelecomnetworks
▶ Linkedin:
/ cody-maccallum-29311b6b
0:00 Intro
0:48 configuring wireguard in Unifi
3:54 speed test and iperf test
4:48 creating firewall rules for wireguard
7:20 final thoughts
@guyot1979 Жыл бұрын
Well done Cody. Perfectly timed for a project Im working on. Thanks!
@mylinuxstruggle5495 Жыл бұрын
My guy never misses. I'm the number 1 fan that you never knew you had.
@Adam-eats Жыл бұрын
Thanks mom
@Yggdrasil42 Жыл бұрын
I'm hoping for Wireguard to come to USG. It's a great VPN protocol with very low overhead. Currently running Tailscale on my Synology for this.
@grantwilcox330 Жыл бұрын
Thanks Cody. Another great video.
@---GOD--- Жыл бұрын
Exactly what I've been waiting for
@giovannidarquea Жыл бұрын
**Cries in UDM Pro v1.12.33
@leonkernan Жыл бұрын
Good news, i've had to do the hacky solution via SSH to my UDM Pro up till now. Now they just need to get that UDM Pro update done...
@jj358mhz Жыл бұрын
Cody, did you have to create a WireGuard network before building out the WG server shown in this video?
@JasonsLabVideos Жыл бұрын
Sweet video Cody !!
@user-is8em7eq1e Жыл бұрын
Great video! In your opinion how does the UniFi Network VPN compare to the UID One-click VPN?
@donaldhoudek2889 Жыл бұрын
Great Video!!! So then my client could be on a RPi now and connect remotely to my UDM Pro, correct? Just trying to get info before I start the project.
@Legendary_UA Жыл бұрын
Nice and clean explanation.
@ClarkyAv Жыл бұрын
Testing this on the EA release of v3.x for UDMP today, but it is not allowing me to select port 51820 - if I select any other port it will allow me to hit apply changes but if I select 51820 it throws an error. Any ideas?
@MikeEbrahimi Жыл бұрын
Why does not Unifi create an interface to block access to RFC1918 so we could enable it by default?
@LuckyPerla 11 ай бұрын
I tested all LAN IN\OUT\LOCAL and for me looks like you couldn`t prevent WG VPN client from accessing UDM web interface or ssh. Could you?
@spacemanwho Жыл бұрын
hey folks,, is there anyway to connect a remote camera over VPN back to an NVR on another network. Kinda getting stuck on this. I set up wireguard client profile on one of these small glinet wifi routers. Its connected and i can see it showing as connected on on the router, but i cant ping anything on my local (remote site) network. The router connects via one of these 5G modems that has gives out its own IP address as well. 5G modem>wan to router
@IssaFram Жыл бұрын
I'm assuming the perf isn't where you want it to be because the UDM needs to be encrypting / decrypting all that traffic. I wonder if it would be faster on a dedicated Linux box with a better CPU
@engineering4070 Жыл бұрын
Great video, one MAJOR problem though. Wireguard won't run unless the user is administrator privileges. That is a show stopper
@TrevorMatthews Жыл бұрын
Great vid! I followed along but 1 question. I'm trying to use my pihole (which I use for local DNS) in the wiregaurd VPN. If I specify the pihole 192.x.x.10 I get no name resolution over VPN. If I use default DNS everything works. I'd heard something about pihole not accepting requests for traffic more than 1 hop away. Does this ring a bell with anyone??
@SFD45182 11 ай бұрын
Thanks, Helped a lot
@NandorKatai Жыл бұрын
Great stuff, as always; how do you do site-to-site VPN with Wireguard between two dream machines?
@PCNProperties Жыл бұрын
Did you ever get this going? Wireguard site to site?
@angelscomputers Жыл бұрын
Thank you very much for the tutorial, it worked right away BUT im having an issue when try to allow the Wireguard network to access my Plex server on my QNAP. Plex port should be 32400 but when I add that port to the "Allow rule" I am creating I get "An error occurred when saving "Allow Wireguard to Plex" Firewall Rule. Your changes could not be applied based on your existing port settings." and dont let me save it. Any ideas? I am creating pretty much the sabe rule like allow to NAS but just adding the port in the destination.
@user-rq1bg2uv2b 2 ай бұрын
Saved my live :) Thank you for that...
@Androcentus Жыл бұрын
I couldn't get this to work...I use starlink and the UDM SE is behind that, funny thing is my iphone client connects to the server on UDM SE even if the server is paused....Regardless I cannot ping my LAN nor VPN gateway...What can be wrong? I wanted this because of the CGNAT issues.
@AceBoy2099 4 ай бұрын
Using WG on the UDM-Pro/SE allow you to access network shared folders on pcs using "//server/share" or is it still "//ip/share" only? I already have a WG on my unraid but remotely I can't access my //server/share shares, so I'm thinking of trying to set this up (while remote) to be able to access the shares already setup.
@AceBoy2099 4 ай бұрын
Ok, so I got this setup, side-by-side with the wireguard that is on my Unraid. Letting it do port ...21 instead of ...20 wasn't an issue apparently. Too bad I can't specify my duckdns on the ui setup, so I'll have to change it manually on each client. My problem with my mapped network drives still persists though. I can't reach them through "//server/share" but it'll work with "//ip/share". How can I get it to work with the server name instead?
@ppmguire Жыл бұрын
Have you had any DNS issues with 3.0+ on the UDM Pro? Having DNS set at the WAN level or the network level doesn't matter. Pings say ok but sites still sometime hang when trying to resolve. This is with Quad9, Google, or Cloudflare.
@larryluffel777 11 ай бұрын
So how does this WireGuard VPN differ from using the Teleport feature? I’m confused on which one to use to VPN into my network. TIA
@capinkronic1795 Жыл бұрын
can you enable or use MFA for vpn users using this method or do you have to use L2TP? I am primarily asking about remote desktop workers no so much mobile users
@BB-Mann Жыл бұрын
i was tried this with different Clients Macos and Windows but i was not able to connect L2Tp is still working without any problems. in the Wireguard client config is missing the Gatway
@DaveChurchill 4 ай бұрын
Hey Mac, I have a question for you and your expertise on the topic: My home network has ISPModem -> UDM SE -> Synology NAS. I am currently running Wireguard server on my Synology NAS and everything works fine. Do you recommend switching it to the UDM SE instead?
@jfkastner Жыл бұрын
Well done, thanks!
@sygad1 Жыл бұрын
Very useful info. Would be nice to get a UDM Pro update so I can implement this and retire the Raspi4 i've got currently servicing this feature
@Zwei62 Жыл бұрын
I'm in the exact same situation, still running an old rpi3 that is starting to show it's age. Hoping we can this update for UDM Pro soon.
@erickamuf4319 Жыл бұрын
If you enable the early access update channel for the UDM Pro you can update the latest version with this feature now!
@simbaclaws_youtube Жыл бұрын
What about obfuscation? Can someone tell me when the UDM Pro has support for shadowsocks? I can not access my VPN on most networks right now due to the easily identifiable traffic...
@BigFourHead Жыл бұрын
DreamRouter and this is not working corrently, i can conenct and access the internet but no access to local devices. no firewall rules.
@thatLion01 Жыл бұрын
I dont have option for Wireguard VPN, is this a beta firmware?
@ShaneFacchinello-ly2hb Жыл бұрын
I have a UDM Pro with Network 7.2.97 firmware, and when I click teleport & VPN, and under the vpn section, it doesn’t show an option for Wireguard. Did they remove Wireguard on the newest version or do I have to install it in the udm pro?
@markusgranberg8004 8 ай бұрын
Strange, this wireguard setup only works for me if the WG client is connecting from inside the network. If i try to activate the WG client when outside the network the connection fails and DMP shows 0 active clients..
@tizian6405 10 ай бұрын
Hi I got the USG-3P. The option for wireguard is not available for me. Does that mean it wont work on it?
@gmenelau 9 ай бұрын
Can you help me with something , i using the WG and the vpn is working the only thing i cant ping the pc in the IP Range i can access the isp modem i can ping the gateway but the clients any rules or do i need to change something to work ?
@Montrovantis 6 ай бұрын
Is there a simple way to set this up to where a vpn client can resolve endpoints via hostname, and still be able to ping their local network as well?
@MadMike78 Жыл бұрын
I'm running the latest OS version and I do not see the Wiregaurd option. Any ideas?
@geo5162 Жыл бұрын
I use wiregaurd to vpn into my home network running untangle firewall to access my Synology surveillance station to access the cameras that are on their own subnet. I'm hearing I can't access unifi protect from the unifi protect app over vpn to see my business cams in the same. Is this true. If it is true why does Unifi want us to use their cloud servers to use unifi protect remotely when theres ways to keep this local?
@saadasif4699 Жыл бұрын
Do you manually have to setup port forwarding for the wireguard port?
@AndyHernandez18 Жыл бұрын
the downloaded profile is not working for me, WIreguard keeps saying invalid tunnel name, not sure what I am doing wrong
@caveman42 Жыл бұрын
Is this not available on the UDM pro? Why would they only release it to the SE?
@2h4 Ай бұрын
Does internet speed determine the vpn speed because I have 1GB down and 20Mbps up but when I try and use the vpn it is extremely slow like less than 50 Kbps I can't even do anything while connected to it
@bitkong9445 9 ай бұрын
I don't have this Teleport & VPN option in my settings..
@user-rb2or3wn9r 10 ай бұрын
What do we do when we follow your steps and everything looks activated, but you cannot ping any IPs on the network you are trying to VPN into? As soon as I activate my tunnel the laptop says "no internet access". Cant ping the UDMP running the wireguard tunnel or any other devices on the network.
@Moorb4 4 ай бұрын
same here. I cant find any solution on the internet so far for this either.
@Paul-zq5ph 8 ай бұрын
Is there a way to allow a WireGuard client acces to only two-three Websites?
@leopold9999 8 ай бұрын
For those without a static ip on their WAN, will this continue to work?
@Jason.M Жыл бұрын
You should do a video about Lan IN vs OUT!
@CharlieCarmichael Жыл бұрын
Do you know if there will ever be support for Wiregard site to site? Does that exist?
@michaelhanson5773 Жыл бұрын
is there a specific reason the firewall rules need to be on LAN OUT instead of LAN IN? All the other inter-vlan blocks were done via LAN IN. My understanding is that that the LAN IN means LAN traffic going INTO the firewall... I have been told that generally LAN IN is where rules should be to prevent slamming the firewall. I kind of know very little when it comes to this stuff but i am just trying to understand.
@mychaelhouck2404 Жыл бұрын
I had the same question. I previously had a rule setup to block all VLAN traffic between each other, so I was not able to initially get to my NAS.
@dzmitryulasau878 Жыл бұрын
@@mychaelhouck2404 +1. I also saw a video where a guy was using regular UDM and hist firewall rules were working fine with LAN-IN. Very strange.....
@shallpion Жыл бұрын
both IN and OUT will work, it is just when blocking people prefer to do it in the IN so the traffic is not entered in the interface and costs unnecessary routing resource before they are dropped (when they go OUT of the interface). When allowing it, as long as it matches the traffic before the "drop all" rule, it will be granted access, so it makes no difference at all.
@manedurphy Жыл бұрын
+1. I am also struggling with wrapping my head around this. My current thinking is this... when we look at the "Networks" tab in the settings, those networks are a part of our LAN. Let's say we have 2 networks, Net1 and Net2, on CIDR blocks 192.168.1.0/24 and 192.168.2.0/24, respectively. If a device on Net1 wants to ping a device on Net2, then the traffic has to travel from the device to the router (UDM), and then from the router to the device on Net2. Without "LAN In" firewall rules, this is allowed because the router will allow the traffic from the device on Net1 to come IN to the router when it is destined for Net2. Let's say that we add a "LAN In" firewall rule that blocks traffic between each of these networks. If the device on Net1 pings the device on Net2, the traffic will flow from the device to the router; when the router sees this ping, it will check its "LAN In" rules and see that it should block this traffic. When we set up a VPN, then our device creates a direct connection to our router. This means that when I ping a device on Net1 or Net2, the physical origin of that ping is the router, whereas in the previous example, the physical origin of the ping was a device on Net1 and that ping needed to travel IN to the router first. If my theory is correct, then when I ping a device on Net1 or Net2, then the router will allow this because there are no firewall rules that prevent the traffic from leaving the router to either of those networks. This is why we need to add "LAN Out" firewall rules when dealing with traffic over a VPN connection. I too am trying to understand this so I may have this wrong. Would appreciate any corrections to what I've said above.
@pantag2 5 ай бұрын
What is the big deal if you do not set up firewall rules for Wireguard? It is a safe tunnel regardless, no? Unless you mess up sharing the private key, what else is to be afraid of?
@mrwrighty6425 Жыл бұрын
Hey Cody, great informative videos. I have a UDMB running 3.0.20 and have created a Wireguard VPN, but cannot access any of my LAN devices like you. Any thoughts.
@MactelecomNetworks Жыл бұрын
You may have to add firewall rules to allow you VPN to certain subnets
@WAGISDev Жыл бұрын
It's only available for UDM flavors. Not if you have a UXG.
@lordcarnorjax8599 Жыл бұрын
UXG - no auto VPN (IPSec site to site) or Wireguard. Why release it if you aren't going to support it properly.
@DJ_Megahertz Жыл бұрын
Oh shucks. Just reading this. So I am USG. Was hoping to do site to site VPN with Wireguard.
@SuspiciousAra Жыл бұрын
only UDM SE, no UDM, no UDM PRO
@undergod1987 11 ай бұрын
am i the only one where this wire guard vpn on unifi is spotty at best. the OPEN VPN is rock solid but i can Rarely get the WireGuard to produce a handshake.
@Arvisgrt Жыл бұрын
Any idea on when 3.0 is being released on the official channel for UDME Se. I don’t feel like switching to the beta releases.
@aednichols Жыл бұрын
It is generally available since yesterday and rolling out in phases. I think you can nudge your device into finding it by visiting the updates section.
@fishmeat69 Жыл бұрын
I can still ping/access the UDM interface through the Wireguard VPN subnet, and it seems like firewall rules under LAN local and LAN out aren't helping. Is there any way to fix this?
@ltcastelnuovo Жыл бұрын
I was looking to create a rule to prevent access to the gateway IP on other subnets and block access to the VPN gateway on ports 22,80,443. In my limited testing, I could not find a solution to this problem. I can, however, achieve this for regular networks.
@jfinnie78 Жыл бұрын
You don't understand the iperf3 results format, you're not testing in both directions with that command you are issuing (the way it presents the information in the summary is a bit obtuse, but it's basically telling you the same result from the point of view of how long the sender and receiver took to do the job). It is only showing the results for actual data transfer in one direction - from the client device to the server device is the default flow (ie upload). You need to do iperf -R to test performance in the (R)everse direction (download).
@MactelecomNetworks Жыл бұрын
Well will have to do another test when I get back home
@online_now6834 Жыл бұрын
I setup WG on WAN 1, when my local PC is connected to WG it cannot find any local resources on my network. They are on two different subnets, 192.168.1.0/24 reg network and 192.168.10.0/24 for WG. Any ideas?
@Androcentus Жыл бұрын
Have the same issue, but this guy doesn't reply to issues...
@MactelecomNetworks Жыл бұрын
@@Androcentus might be firewall rules. I reply to comments as much as I can but I get hundreds a day so some go under the radar. If you want fast response not from just me join the discord
@ToddBeam Жыл бұрын
I watched your prior video "Unifi network complete setup 2022". I believe I setup my SE firewall rules as you notated, but with WG, following this setup, I'm unable to browse my local network. Could you do a video showing us this same setup but with the ability to browse our LAN? If we do not have a static WAN IP, and we are running DDNS on the SE, should we adjust our config file to use the DDNS hostname instead for the ENDPOINT address? I must be missing something.
@alexdu7779 Жыл бұрын
I also have the same problem, after the WG is connected, I cannot access the target intranet device.
@TeoFaot Жыл бұрын
@@alexdu7779 You need to set the same submask for the wireguard network, eg: if your primary network is /24 then your WG network should be /24 too.
@alpineaudiof1 Жыл бұрын
@@TeoFaot done that, both my wireguard and default network are /24
@Claytronroy Жыл бұрын
@@TeoFaot So with that being said my primary LAN is a /22... Looking at the wireguard I can't pick a /22 so it won't work in this type of setup?
@user-es3ri2gx9u Жыл бұрын
I can't get this to work, I have followed the steps over and over and still not working, is there a forum or somewhere to go for help? please please please?
@DJ_Megahertz Жыл бұрын
Thanks very much for this video. Is there also an option to do site to site VPN using Wireguard with CK managing it?
@MactelecomNetworks Жыл бұрын
I don’t believe so as of right now
@konepolska Жыл бұрын
I setup wireguard but on my devices leaks my real ip. How do i hide/change it?
@user-vh4xc3ud7v Жыл бұрын
Hi Cody, thanks for your video, it helps me a lot to setup the WG VPN. However, I have an issue regarding the gateway IP while connecting through WG VPN on client's computer. I did drop all inter-vlan traffic / ping between the devices by the firewall rules. However, I found that it is still able to PING, even access through browser, to all vlan's gateway (which is the UDM PRO login page) during VPN connection. Do I need to setup or add anything in the profile / rules to prevent the VPN user get ping / access to the login page?
@MactelecomNetworks Жыл бұрын
I believe you need to create rules under LAN OUT to drop VPN traffic
@LuckyPerla 11 ай бұрын
Hi Cody,@@MactelecomNetworks , thank you for you video. It`s very useful. But I have the same issue with ping GW and access WebUI UDM. In your setup you blocked all traffic to RFC1819 which incudes GW. So could you ping your UDM? I tested all LAN IN\OUT\LOCAL and for me looks like you could not prevent WG VPN client from accessing UDM web interface or ssh.
@lalalu7803 Жыл бұрын
only the UDM can run a wireguard server? can the UDR do it?
@user-nm2wz1ui2h Жыл бұрын
Say hello to UDM Pro& UDM users =))) Waiting for 2.X update....
@MactelecomNetworks Жыл бұрын
Hello UDM pro users your time is coming soon :)
@MrTeeseeone Жыл бұрын
@@MactelecomNetworks Hope soon is soon :)
@PowerUsr1 Жыл бұрын
Those speeds on WireGuard aren’t great. Assuming the workload of end users is only browsing
@soufilms Жыл бұрын
So USG PRO doesn’t have this option ? Ubiquity common how come ????
@kurcina74 Жыл бұрын
@mactelecom you are sure that wireguard will work with cgnat like starlink?
@MactelecomNetworks Жыл бұрын
On the Ubiquiti documentation I personally haven’t tried it yet
@ttk1opc Жыл бұрын
Does it matter if the wan ip address is not static?
@mattm8415 Жыл бұрын
Businesses won’t create 100 profiles, and I don’t see any radius option.
@GlennArango Жыл бұрын
Hi Cody. I'd love to follow along, but I'm unable to delete my existing L2TP VPN to create a new NetGuard-based one. My UDM is running 2.4.27 and don't see any option for adding another or deleting the existing. Is my device unsupported or am I missing the obvious somewhere to delete it? Thanks!!!!
@MactelecomNetworks Жыл бұрын
For wireguard your console needs to be at Unifi os 3.0
@andrewenglish3810 Жыл бұрын
Does WireGuard do split tunnel or full tunnel VPN and how do you specify which one?
@SCOOkumar Жыл бұрын
Allowed IP list needs to be 0.0.0.0/0 for full tunnel, for split tunnels you just type in the IP addresses into the allowed IP list
@goosefeather7654 Жыл бұрын
Can you implement Wireguard with site to site VPN?
@drcpaintball Жыл бұрын
Yes
@MilindPatel63 Жыл бұрын
if i am in a cg-nat situation and i don't have a fixed public ip, can wireguard still bypass cgnat?
@tobydavy2052 Жыл бұрын
I'm having the same issue - I can't get it working behind CGNAT
@Androcentus Жыл бұрын
@@tobydavy2052 Same here, this guy falsely stated that it would work with cgnat, it does not.
@tjobrien21 Жыл бұрын
I must be a bonehead. I have a UDM pro that says it is up to date as of today (1/3/2023) , but I can't find the Wireguard options. Am I missing something?
@MactelecomNetworks Жыл бұрын
So it’s not out for UDM pro yet. Need to wait till the UDM pro is at firmware version 3.x
@goranemilsson5239 Жыл бұрын
What version of UniFi OS is used for this? I use UDM Pro v1.12.33 (Official) and dont have the option of WireGuard, only L2TP.
@MactelecomNetworks Жыл бұрын
Unifi os 3.0 only on the UDM se and UDR coming to the UDM pro soon
@NiceDevil Жыл бұрын
how to block the access of the WG to the UDM interfaces of other VLANs? The LAN LOCAL Rule seams not to work here
@claytonnlambert 5 ай бұрын
Same issue here, did you figure this out?
@RK-ly5qj Жыл бұрын
What is all about LanIn and LanOut? On NGF Firewalls i havent met with such weird nomenclature xD how to interpretate it? And also, why by default ALL TO ALL is allowed? Where is the logic on that? :p this is against any kind of security xD
@ColinKrieg Жыл бұрын
I don't understand, how are you getting such slow speeds with a gigabit connection? I just tried wireguard on an Asus AX-88U router, it capped out at 600 mbps because without NAT acceleration, that's all the router can do. It's a 1.8 ghz quad core. UDM SE is a 1.7 ghz quad core. Something doesn't seem right...
@MactelecomNetworks Жыл бұрын
It may have been my test results but I checked with multiple other people and they were getting the same. I’ll retest and post a short on my finding
@Dalin_B Жыл бұрын
Yo, does no one use the "old Dream Machine" anymore? Not the suped-up Cisco Look-a-like, Looks like Unifi is going to pass this one by on the wireguard update. The VPN struggle is real
@xaponetta Жыл бұрын
Do we have to open port 51820 UDP if not in bridge mode on router to make it work?
@tinkercase3181 Жыл бұрын
Okay find Carolyn Vuitton
@Catge Жыл бұрын
No you don't.
@Joel-uo5cm Жыл бұрын
Do you a public IP for home router for this?
@stlDMS Жыл бұрын
Why does it download the config as txt?
@travisjohnson5360 Жыл бұрын
Is there any way to use UDM Pro for vpn to replace something like nordvpn to keep all traffic hidden? For torrenting etc..
@MactelecomNetworks Жыл бұрын
Not yet. It will be available in a new update soon
@giuseppebinetti87 Жыл бұрын
Why using LAN Out rules instead of classic LAN In rules?
@michaelhanson5773 Жыл бұрын
i am still waiting on an answer to this question too...
@skrillmax Жыл бұрын
There is something wrong with your speeds, I get close to 500Mbps when using the UDM SE as a Wireguard Server.
@MactelecomNetworks Жыл бұрын
Could be possible I twill test again I was expecting more
@richacevedo660 Жыл бұрын
Thanks for the video i still don't have the Wiregaurd option on my UDM pro
@ChrisHolzer Жыл бұрын
we have to wait for UnifiOS 3, idk why but we will only get UnifiOS 2 next.... not 3 :(
@leonkernan Жыл бұрын
@@ChrisHolzer 1 to 2 is a big change they've been testing for a long time. The change from 2 to 3 should be pretty fast once we're over the first hump.
@samtechtips7923 Жыл бұрын
i am having an issue with my pppoe network with Wireguard any help?
@MactelecomNetworks Жыл бұрын
Hey best to join the discord to ask. Troubleshooting on KZbin comments is very difficult discord.com/invite/nEaMr5zzkZ
@perovic96 Жыл бұрын
Does it support DDNS url as a server IP?
@perovic96 Жыл бұрын
I’ll answer my own question. It doesn’t. You can change it in the certificate however manually and it will work with Mac/iOS/windows clients, but not with something like OpenWRT client
@brandonarmstead6275 Жыл бұрын
UDM SE 3.0.13 - default setup, WireGuard, not able to communicate with other subnets while connected to the VPN.
@Androcentus Жыл бұрын
Are you behind cgnat? if yes that's the reason.
@michaelhanson5773 Жыл бұрын
dy default, it does allow access to every subnet unless there is something else blocking it... i am on vanilla UDM SE 3.0.18 and it allowed it by default just like in the video.
@ben_r_ Жыл бұрын
Coooome on UXG next/soon!
@MactelecomNetworks Жыл бұрын
It’s released in the early access channel right now
@CalebGorham Жыл бұрын
This does not work with CGNAT.
@Androcentus Жыл бұрын
Exactly, the OP falsely stated that!
@santoshpandey3873 7 ай бұрын
pls show in white background. dark background is not very readable, specially on phones.
@fretbuzzly Жыл бұрын
For those like me wondering where in the world these settings are, well, if you have a UXG-Pro like myself they don't exist because they aren't supported on the UXG-Pro. Sigh...
@MactelecomNetworks Жыл бұрын
So not yet like the UDM pro. These will be available eventually but no time line
@xraargu6212 Жыл бұрын
The trouble with WireGuard for windows is it is USELESS for general end users. The wireguard client only works while logged in at the desktop as an administrator. So, you are now either 1) putting all your users in the admin group (TERRIBLE idea) 2) Users switch back and forth between an admin account and user account ("run As administrator" does NOT work in this case) 3) following various hacks you can find out there All really unusable to connect uncle Billy to your home network. Or your small company CEO to the work network.
@SuspiciousAra Жыл бұрын
UDM's are more of an enthusiast/power user machines, nice to have toys, i would not put my business on a UDM.
@Montrovantis 6 ай бұрын
@@SuspiciousAra Why not?
@RobertoCarlos-tn1iq Жыл бұрын
why not show us how to set this up as a wireguard client? lots of people use vpn service providers that offer wireguard.
@MactelecomNetworks Жыл бұрын
I could possibly one video at a time
@IvanITpro Жыл бұрын
Just look at his previous videos of how he sets that up for Nord/Express VPN. Should be a similar process, and if you got some networking knowledge, it should be a piece of cake ... 😉
@aednichols Жыл бұрын
I don’t think WireGuard client exists yet in the current 3.0.
@ToTheTMAX Жыл бұрын
@@aednichols looks like you are correct, only available as openvpn ATM
@aednichols Жыл бұрын
@@ToTheTMAX Yeah no doubt it is a staged rollout with the most popular use cases prioritized first.
Technology Moments
Рет қаралды 2,8 М.
Digital Mirror
Рет қаралды 16 М.
Lawrence Systems
Рет қаралды 187 М.
Brother-live_mob
Рет қаралды 1,2 МЛН
Photographer Army
Рет қаралды 9 МЛН