Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. A

    Splitting Wireguard between Router and client

    Regarding ip -6 route add 0000::/2 via <ubuntu link-local> dev br0 Ip -6 route add 4000::/2 via <ubuntu link-local> dev br0 ip -6 route add 8000::/2 via <ubuntu link-local> dev br0 ip -6 route add C000::/2 via <ubuntu link-local> dev br0 do I also need to add table 123 after br0?
  2. A

    Splitting Wireguard between Router and client

    I will try this - link local is much easier as it is fixed, SLAAC on the router is using privacy extensions, so the MAC address is not used for the global suffix(es). Currently if I test my dummy client on the router, it seems to break the network connectivity on the VM. The possible culprits...
  3. A

    Splitting Wireguard between Router and client

    Adding the ipv4 as you advised worked with no error messages ip route add 0.0.0.0/2 via <ubuntu machine ipv4> dev br0 table 123 ip route add 64.0.0.0/2 via <ubuntu machine ipv4> dev br0 table 123 ip route add 128.0.0.0/2 via <ubuntu machine ipv4> dev br0 table 123 ip route add 192.0.0.0/2 via...
  4. A

    Splitting Wireguard between Router and client

    Puzzled by this, the VM IPs as seen on the LAN or the Router are the same as the VM IPs seen when running ifconfig from the VM itself. The next stage is to try adding the routes from the ssh prompt when WGM client is up, and if no errors add them to the wg-xx-up.sh script. Presumably I add the...
  5. A

    Splitting Wireguard between Router and client

    While I have managed to add the firewall (ufw) and ip forwarding (ipv4 and ipv6) to my ubuntu VM I am getting stuck on replicating its connectivity to the rest of the LAN devices (10.50.60.xxx). While I could add particular services by allowing the their ports, I cannot see how to allow network...
  6. A

    Splitting Wireguard between Router and client

    Went back to this and noted what @Martineau said at the time When I first start WGM, flow cache is disabled. I then enable and initially any WG clients are speed limited while the other lan clients run at full speed. At the same time there are no Router kernel: [0;33;41m[ERROR mcast]...
  7. A

    Splitting Wireguard between Router and client

    A slight detour: While I am am still investigating spitting WireGuard, the starting point for this was that I wish to have IPv6 on the WG clients, which meant I cannot use the built in WireGuard. However the WGM implementation does not support FC bypass on my current router (RT-AX88U), at...
  8. A

    Splitting Wireguard between Router and client

    When I start wg13 and run <ip rule> it shows the following extra lines 9931: from 192.168.3.1 lookup 123 9993: from all fwmark 0x4000/0x4000 lookup 123 and admin@Router:/tmp/home/root# ip route show table 123 0.0.0.0/1 dev wg13 scope link 10.50.60.0/24 dev br0 proto kernel scope link...
  9. A

    Splitting Wireguard between Router and client

    This probably in the wrong order, but I have the Wireguard 'client' running on my Ubuntu VM and the WGM 'server' running on the router with fc enabled. Downtime is not really an issue for now as while I have lost passthru, when I leave home and want to use the server can just stop the client...
  10. A

    Splitting Wireguard between Router and client

    Hi @ZebMcKayhan Starting at the top I have not tried the built in client, I could but as it is IPv4 only I can not see how it will help other than to indicate that it is something in the WGM implementation. Could try this to see what happens - will have a look for how to set this up. I...
  11. A

    Splitting Wireguard between Router and client

    Hi @ZebMcKayhan Almost a year on from my initial look at the Flow Cache restrictions with using WireGuard (WGM) see https://www.snbforums.com/threads/session-manager-4th-thread.81187/page-8#post-833178 I finally have a fast enough ISP for it to matter. With the latest rMerlin it looks like...
  12. A

    Disabling FC and running speedtest

    Hi, I am not sure what you are suggesting I look at here. In order to run WireGuard (WGM) the settings that seem to work best are Runner: enabled Flow Cache: disabled. However with Flow Cache disabled, all internet traffic is speed limited (450/500 down from ISP 1Gb symmetric) not just that...
  13. A

    Disabling FC and running speedtest

    Thank you very much for testing - the drop is as feared (and as advised) and helps me with eliminating options (to get my internet connection working at full speed while still retaining WireGuard)
  14. A

    Disabling FC and running speedtest

    Out of curiosity, how far down does the download speed drop if you disable Flow Control?
  15. A

    Help needed on RT-AX88U Pro raw speed

    That is very disappointing, I had hoped that the newer routers with faster chips / more memory would have better raw processing power.
  16. A

    Help needed on RT-AX88U Pro raw speed

    I am looking for some help on the maximum speed of the RT-AX88U Pro when flow control is disabled. If anyone has one of these and a 1 Gb (or faster) ISP link, what is the throughput if flow control is disabled? Background to request I have the older non-pro model and it caps put at around...
  17. A

    Beta Asuswrt-Merlin 3004.388.6 Beta is now available

    Dirty upgrade from 388.5 - everything looking good other than DDNS Server Certificate - unknown or processing as noted above. No issues with temps, RAM, Wi-Fi, DDNS appears to be otherwise working, scripts all fine, nothing unusual in logs. Thank you @RMerlin
  18. A

    Recommendation for 1Gb speeds with Flow Control Off.

    My understanding was that although OpenVPN allows use of flow cache, it would have a similar net effect on my router due to its increased resource requirement (than WireGuard). In addition the Asus / Merlin OpenVPN implementations are currently limited to IPv4 for clients, whereas as WireGuard...
  19. A

    Recommendation for 1Gb speeds with Flow Control Off.

    I have recently moved to 1 Gb Community Fibre and my RT-AX88U is limited by my requirement to run VPN (incoming and outgoing) for some devices. As I have a dual stack setup I am running Wireguard (via WGM), which in turn means I need Flow Control disabled. The net effect is to limit...
  20. A

    RT-AX88U with 1gb Community Fibre

    Also on Community Fibre, cloned the supplied Linksys router MAC , connection type is automatic IP, I do have IPv6, DHCP-PD. To get it running the first time I connected the Linksys router to the ONT, checked it was working using Wi-Fi on my phone, cloned the MAC on RT-AX88U and applied settings...
Top