Title
b
boundless-photographer-22783
12/06/2022, 6:25 AMEgress connectivity issue to wan connected to openwrt with netclient
Connectivity from
win1-wgGL-MT1300GL-MT1300192.168.8.0/24whereas
ubuntu-server192.169.30.0/24win-wg192.168.30.0/24Following is the output of
ip rroot@GL-MT1300:~# ip r
default via 192.168.3.1 dev eth0.2 proto static src 192.168.3.78 metric 10
10.149.240.0/24 dev nm-vpc-net proto kernel scope link src 10.149.240.6
x.x.x.x via 192.168.3.1 dev eth0.2
192.168.3.0/24 dev eth0.2 proto static scope link metric 10
192.168.30.0/24 dev nm-vpc-net scope link
192.168.8.0/24 dev br-lan proto kernel scope link src 192.168.8.1Following is the output of
netclient listroot@GL-MT1300:~# netclient list | jq .
{
"networks": [
{
"name": "vpc-net",
"node_id": "64be95c3",
"current_node": {
"name": "GL-MT1300",
"interface": "nm-vpc-net",
"private_ipv4": "10.149.240.6",
"public_endpoint": "y.y.y.y"
},
"peers": [
{
"public_key": "07jhzFl2c=",
"public_endpoint": "x.x.x.x:51821",
"addresses": [
{
"cidr": "10.149.240.254/32",
"ip": "10.149.240.254"
},
{
"cidr": "10.149.240.4/32",
"ip": "10.149.240.4"
},
{
"cidr": "10.149.240.7/32",
"ip": "10.149.240.7"
},
{
"cidr": "10.149.240.3/32",
"ip": "10.149.240.3"
},
{
"cidr": "10.149.240.5/32",
"ip": "10.149.240.5"
},
{
"cidr": "10.149.240.2/32",
"ip": "10.149.240.2"
}
]
},
{
"public_key": "QHHP75Uk0=",
"public_endpoint": "192.168.30.44:10664",
"addresses": [
{
"cidr": "10.149.240.8/32",
"ip": "10.149.240.8"
}
]
},
{
"public_key": "bUZtF1paCk0=",
"public_endpoint": "192.168.30.4:51821",
"addresses": [
{
"cidr": "10.149.240.1/32",
"ip": "10.149.240.1"
},
{
"cidr": "192.168.30.0/24",
"ip": "192.168.30.0"
}
]
}
]
}
]
}Whereas the following is
ip rdefault via 192.168.30.1 dev enx9096f3493694 proto dhcp metric 101
10.149.240.0/24 dev nm-vpc-net scope link
10.149.240.2 dev nm-vpc-net scope link
10.149.240.3 dev nm-vpc-net scope link
10.149.240.4 dev nm-vpc-net scope link
10.149.240.5 dev nm-vpc-net scope link
10.149.240.6 dev nm-vpc-net scope link
10.149.240.7 dev nm-vpc-net scope link
10.149.240.8 dev nm-vpc-net scope link
10.149.240.254 dev nm-vpc-net scope link
x.x.x.x via 192.168.30.1 dev eno1
169.254.0.0/16 dev eno1 scope link metric 1000
192.168.30.0/24 dev eno1 proto kernel scope link src 192.168.30.200 metric 100
192.168.30.0/24 dev enx9096f3493694 proto kernel scope link src 192.168.30.4 metric 101
192.168.8.0/24 dev nm-vpc-net scope link@User looking forward your comments
b
bored-island-21407
12/06/2022, 1:07 PMwhen did you create the ingress gateway on netmaker-1, before or after you created the egress gateways?
b
boundless-photographer-22783
12/07/2022, 12:46 AMcreated Ingress gateway on
netmaker-1GL-MT1300something similar to the setup i did for
ubuntu serverb
bored-island-21407
12/07/2022, 12:49 AMWhen you create an extclient, the config that it recieves is a snapshot of the network at that point in time. If you add new gateways after that, the extclient doesn't get the update
b
boundless-photographer-22783
12/07/2022, 12:51 AMyes, I got that.. on the extclient i have added
192.169.8.0/24192.169.30.0/24I was able to connect to router with
192.169.8.1192.169.8.0/24looks like some settings got to do with OpenWRT firewall to allow egress
@bored-island-21407 , https://discord.com/channels/825071750290210916/998635794149421066/998646315519053884 message helped to resolve.
Now from ext client I am able to reach both
192.168.8.0/24192.168.30.0/24