WireGuard and IP Cloud
Posted: Tue May 18, 2021 5:40 pm
I have two MT routers connected in a wireguard tunnel on RoS-7.5 beta
One is behind a CCR1009 (RB450Gx4) and the other RB4011, running behind a consumer ISP modem/router HH3000.
Works great in no small part to the kind support from Sindy. (speed tests roughly 300/300!)
However one thing I am not sure of is the interplay between Wireguard and IP Cloud for all the following instances!
(1) On the CCR I have dstnat rule to pass the initial client request for a tunnel to the WANIP of the RB450Gx4
add chain=dstnat action=dst-nat in-interface=wan src-address-list=RB4011-External dst-port=ListeningPort protocol=udp to-address=IP[ lanip(CCR)=wanip(RBG) ]
where RB4000-External=mynetname.net for the RB4011
(2) On the RB450Gx3 Wireguard interface peer settings, the endpoint IP address for the RB4011 is mynetname.net for the RB4011
(3) Likewise on the RB4011 the Wireguard peer settings to indicate the endpoint has the mynetname for the RB450Gx4
So, what should I expect to happen when two cases arise?
A. The Dynamic public WANIP of the client RB4011 changes?
B. The Dynamic public WANIP of the server RB450Gx4 changes?
(Note; the client has keep alive set at 30 secs on their WG interface.)
One is behind a CCR1009 (RB450Gx4) and the other RB4011, running behind a consumer ISP modem/router HH3000.
Works great in no small part to the kind support from Sindy. (speed tests roughly 300/300!)
However one thing I am not sure of is the interplay between Wireguard and IP Cloud for all the following instances!
(1) On the CCR I have dstnat rule to pass the initial client request for a tunnel to the WANIP of the RB450Gx4
add chain=dstnat action=dst-nat in-interface=wan src-address-list=RB4011-External dst-port=ListeningPort protocol=udp to-address=IP[ lanip(CCR)=wanip(RBG) ]
where RB4000-External=mynetname.net for the RB4011
(2) On the RB450Gx3 Wireguard interface peer settings, the endpoint IP address for the RB4011 is mynetname.net for the RB4011
(3) Likewise on the RB4011 the Wireguard peer settings to indicate the endpoint has the mynetname for the RB450Gx4
So, what should I expect to happen when two cases arise?
A. The Dynamic public WANIP of the client RB4011 changes?
B. The Dynamic public WANIP of the server RB450Gx4 changes?
(Note; the client has keep alive set at 30 secs on their WG interface.)