Hello again,
On 19 Aug 2024, at 12:32, Adolf Belka adolf.belka@ipfire.org wrote:
Hi Michael,
Further feedback on testing with my android phone. I used the QR code and it worked. I got a connected tunnel but again ping was not working. All packets were lost.
Not good.
What did you use for the client pool? Do you maybe have an address conflict?
Also when I tried to browse to ipfire.org it responded with "www.ipfire.org's DNS address could not be found. Diagnosing the problem" but nothing further happened.
Browsing is working fine on any of the vm machines on the vm green network that the tunnel is connected to.
Interesting result with the WUI, when there is one client connected and the other disconnected. The status box then stays as very large leaving hardly any room for the remark so it has to go to multi lines.
Regards,
Adolf.
On 19/08/2024 13:04, Adolf Belka wrote:
Hi Michael,
Sorry for the delay with feedback on the WG testing. I was a bit tied up with DIY stuff in the house.
By manually importing the WG config file created I was able to successfully connect from my laptop to my IPFire vm system. The WUI showed connected. The config file had my allowed subnets set as 192.168.200.0/255.255.255.0 which is the green subnet on my vm system. However trying ping over the WG tunnel gave failures for the IP of the vm machine, green1, and also for the green interface of the vm IPFire.
Trying to ping with the FQDN for the green1 system resulted in no resolving of green1's FQDN to a local IP but tried to send it to my main red interface with my ISP.
So something appears to be missing or incorrect with the routing but not sure what.
Minor points on the WUI.
When disconnected the status section that is coloured red is huge and the space for the remark is very small but when connected then the status space is large enough to have the connected status word, giving much more room for the remark.
When the WG config file is created and you have the page with the QR code, there is also a message about the WG config file only being shown this one time as it contains private key material. The message is fine but the heading for the message is "Oops, something went wrong...". It should really be something like "Information Note" or equivalent as it is not an actual error message.
See the screenshots attached.
Regards,
Adolf.
<One Connected one disconnected WUI screen.png>