Howdy y’all,
I am an absolute newbie when it comes to this but I’m trying to use the built in vpn server.
I have a UDM SE running v3.0.18 with the network running 7.4.156
I have it setup to where I can connect and I get network going through, but I cant ping any other device other than the UDM it self.
Hello! Thanks for posting on r/Ubiquiti!
This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can.
Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit.
If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it!
I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.
What do you have set for your AllowedIPs on the client?
Did you follow this link? How to Set Up WireGuard on UniFi Devices - WunderTech
I set up a LAN Out Allow firewall rule from my WireGuard VLAN to the IPs in my main LAN that I wanted to access. I also set up a LAN Out Block firewall rule that blocks access to all other private networks.
The Allow is before the Block, so if the destination is one of the allowed IPs they get through, others, not so much.
Edit: After playing with mine for a few minutes it looks like yours has the above Block rule enabled. When I disabled my block rule, I was able to ping clients on my main LAN from the Wireguard VLAN.
so from what I read, 0.0.0.0/0 should allow it? but that’s included in the allowed ips
I haven’t changed or added any rules, so which thing are you talking about?
Can you post screenshots of your wireguard configuration (block any keys out)
What internal ip/subnet do you use on the UDMP and what ip/subnet are you using for your wireguard clients?
Didn’t say that you added any rules, but speculated that one was in place by default. When I paused both of my rules I could ping any of the base LAN clients from my phone using WireGuard VPN.
I’ve added a screenshot to my post.
Ahh, ok yeah so the only ones that are set are whatever default rules there are. Do I have to make one?
Recommend 2 as stated in the longer comment above.
