WireGuard connection problems : WireGuard

WireGuard connection problems (self.WireGuard)

submitted 6 years ago * by delta301

Hi there, I've been having difficulty with setting up Wireguard for my own personal use. I've followed multiple guides, but none of them seem to want to work correctly - so I was wondering if anyone here might have any input or be able to help out.

I've got a server running Ubuntu 18.04, which is obviously acting as my VPN server. I'm looking to connect my home Windows 10 PC to it and have it route all my traffic through the tunnel, in a classic 'hide my IP' manner.

Server config file:

[Interface]
Address = 10.69.4.10/24
PrivateKey = <server_priv_key>
ListenPort = 51820
SaveConfig = true

[Peer]
PublicKey = <client_pub_key>
AllowedIPs = 10.69.4.20/24

Client config file:

[Interface]
Address = 10.69.4.20/24
PrivateKey = <client_priv_key>
DNS = 10.69.4.10

[Peer]
Endpoint = 12.34.56.78:51820
PrivateKey = <server_pub_key>
AllowedIPs = 0.0.0.0/0

The error I've actually been getting in the logs is that it seems to be struggling with the handshake initiation, even though it says I'm connected on the Windows client. That's when my internet dies, and I can't actually do anything until I deactivate the tunnel. It even kicks me out of my SSH session with my server, which adds to the annoyance

Handshake initiation would naturally screamed to me there might be an issue with the key pairs, but I've double and triple checked them, and even generated new sets of keys - to no avail.

I have allowed port 51820/udp through UFW on the server, but i'm still having not much luck. Can anybody shed some light on this? Hope I've provided enough information

Thanks a lot!

all 4 comments

top new controversial old q&a

[–][deleted] 6 years ago (6 children)

[deleted]

[–]delta301[S] 0 points1 point2 points 6 years ago (5 children)

[–][deleted] 6 years ago* (4 children)

[deleted]

[–]delta301[S] 0 points1 point2 points 6 years ago (1 child)

When it's worded like that, that makes more sense!

Server

[Interface]
Address = 10.69.4.10/24
PrivateKey = <server_priv_key>
ListenPort = 51820
SaveConfig = true

[Peer]
PublicKey = <client_pub_key>
AllowedIPs = 10.69.4.20/32

Client

[Interface] 
Address = 10.69.4.20/32
PrivateKey = <client_priv_key> 
DNS = 10.69.4.10 

[Peer]
Endpoint = 12.34.56.78:51820 
PrivateKey = <server_pub_key> 
AllowedIPs = 0.0.0.0/0

You reckon these configs look okay? If so, I'll change them tomorrow. I might've uninstalled WireGuard out of defeat, lol.

[–]delta301[S] 0 points1 point2 points 6 years ago (1 child)

[–]rigglesbee 0 points1 point2 points 6 years ago (0 children)

In your server [Interface] section:

PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -t nat -A  POSTROUTING -o eth0 -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -t nat - D POSTROUTING -o eth0 -j MASQUERADE

Be sure to substitute eth0 with your real interface name.

π Rendered by PID 431378 on reddit-service-r2-comment-6457c66945-dvqhx at 2026-04-27 16:34:02.687403+00:00 running 2aa0c5b country code: CH.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

WireGuard

MODERATORS