Re: Wireguard doesn't seem to work on macppc 7.8

Thu, 14 May 2026 07:38:57 -0700 

Hello,

On Thu, May 14, 2026 at 03:54:19PM +0200, Gabriele Vento wrote:
</snip>
> >
> >    can you share output of `ifconfig wg` for both tunnel ends?
> On my end it is outputs
>     wg0: flags=80c3<UP,BROADCAST,RUNNING,NOARP,MULTICAST> mtu 1300
>         description: ...
>         index 8 priority 0 llprio 3
>         wgport 22670
>         wgpubkey ...
>         wgpeer ...
>             wgpsk (present)
>             wgpka 15 (sec)
>             wgendpoint 15.204.55.83 42070
>             tx: 7844, rx: 0
>             wgaip 15.204.55.83/10
>         groups: wg
>         inet ... netmask 0xffffffff
> 
> For the other end of the tunnel, I do not own that endpoint so I cannot 
> provide the output.
> >    optionally content of /etc/hostname.wgX on both endpoints.
> My system does not appear to possess that file.

    sorry I was not clear enough in my first email.
    because your wireguard VPN endpoint uses wg0 interface,
    then there should be file /etc/hostname.wg0. The file naming
    and more details on this can be found in hostname.if(5) manual page
    (just run 'man hostname.if' on command line)

> 
> >    Make sure to redact/remove any keys for tunnel.  I suspect
> >    there might be issue with wgaip settings which Stuart mentioned.
> >
> >    also if you can check output of
> >        route get $IP_address_reached_over_tunnel
> >    command should help us to tell the routing works as expected,
> >    you can use remote tunnel peer's address.
> Sure, here is the output:
>     route to: 15.204.55.83
>     destination: 0.0.0.0
>     mask: 0.0.0.0
>     gateway: 10.34.116.212
>     interface: gem0
>     if address: 10.34.116.145
>     priority: 8 (static)
>     flags: <UP,GATEWAY,DONE,STATIC>
>     label: dhcpleased
>     use mtu expire
>     39 0 0
>     sockaddrs: <DST,GATEWAY,NETMASK,IFP,IFA,LABEL>

    I think output of 'route get' points at a problem. it looks like all
    packets use a default gateway, including packets which should be forwarded
    using wireguard tunnel (wg0 interface).

You redacted IP address of wg0 interface when sharing ifconfig output,
This is important detail in puzzle. If I understand things right it
does not work because of misconfiguration. It could be a wrong address/mask
combination is assigned to wg0 interface. I think this is where you
need to look at next.

hope it helps
regards
sashan

Reply via email to