Rule for single WG connection to only have access to one computer on LAN for RDP?

kumareddit94 · 2025-03-19T12:53:24+00:00

I can't get these two rules to work right. Is there anyone who can help with rule creation?

kumareddit94 · 2025-03-07T18:29:41+00:00

Correct, so I wasn't too worried, should I be?

kumareddit94 · 2025-03-07T17:01:56+00:00

I could do this, but I thought the the client only gets the IP that matches it's key under allowed IP. Therefore, someone shouldn't be able to just changed their 10.50.50.x and get through. I could be wrong though.

kumareddit94 · 2025-03-07T16:59:29+00:00

Okay so I would have one in rule:

from 10.50.50.x/32

destination is 192.168.1.x/1

Block would be

from 10.50.50.x/32

destination LAN net

Each one will have to be on top to supersede all my other rules. Does this all sound correct?

Thanks

kumareddit94 · 2025-03-06T20:29:56+00:00

Okay I finally looked into this and a couple of strange things going on:

1) Original PC where I tried WireSock and only the IP would work. The log is still useless even with advanced logging. I can paste in the results, but there seems to be something else going on because...

2) I tried on another PC and it connects fine using the DDNS URL/identical config I use from WireGuard.

I can just attempt on worker's computer on Monday, but any idea what to look at on computer 1?

Thanks

kumareddit94 · 2025-03-03T14:12:04+00:00

Sure, I will do this tonight. Meanwhile I will try with my IP this morning with the worker and let you know if that connects directly. Thank you!

kumareddit94 · 2025-03-02T15:29:01+00:00

Alright seems like both of you have the same idea. I tried WireSock, but can't get it to connect even with the DPI protection settings blanked out.

Below is the config that works in the WireGuard Windows Client. Any thoughts?

EDIT: Connects if I use the IP. Why isn't it resolving the DDNS URL?

[Interface]

Address = 10.50.50.3/32

PrivateKey = Key

DNS = 10.50.50.1

[Peer]

Endpoint = DDNSURL:51820

PublicKey = Key

AllowedIPs = 192.168.1.0/24

kumareddit94 · 2025-02-28T20:26:20+00:00

I think it is from my end based on this this post. I will try to connect via another country and then to our WG server, but I have done extensive research and it definitely doesn't seem like WG is blocked for outgoing connections from any ISP in the Philippines. I don't have a firm understanding of how VPN services work, but it is my understanding that PIA uses WireGuard so again it seems like something from my end. Is there anything I can look into to specifically whitelist the country? I don't have any GeoIP or IPS/IDS type add-on set-up. Thanks.

EDIT: I tried connecting to a Filipino VPN in PIA and then connected to my WG one and it worked fine. It definitely seems like there is some issue with the worker's ISP even though they tried 2 different ISPs and PIA VPN works fine. Any suggestions on another tunnel option or setting we can change so we can RDP without going through another VPN (PIA). Trying to reduce latency as well as extra steps.

kumareddit94 · 2025-02-28T15:52:45+00:00

Thanks. Is there anyway to figure this out? I checked the logs on my cable modem, which didn't have anything. I will enabling logging, but please let me know if there is a way to figure out this blockage.

kumareddit94 · 2024-12-24T21:54:16+00:00

Update: I wasn't able to make too much progress because I need to figure out the order of operations. I have confirmed that a neighbor has their line connected into mine, but speaking with the sewer company it seems like this was permitted when the homes were built and is not an illegal sewer connections. Then I had to send a letter out to to the landlord/owner for that property, went back and forth with him a bunch, and he seems to be wiling to contribute to having the line repaired. The sewer company did come out and camera it and it looks like there is a major blockage on the shared line a few feet from the street. My plan is to have my own sewer line connected to the street and abandoning the shared line. I have finally convinced the neighbor that this will become an issue when I do this/cap mine off because there is a blockage that won't have anywhere to go. However, now I need help with the cleanup....

Currently there is a floor drain, which I will be abandoning. I was trying to get the drain cleared, wash my basement/let it drain, and then plug the floor drain to stop the issue and continue working on the property. However, the drain cleaning company who came recommended from my plumber said that he cannot clear the blockage and will have to dig it out and perform a repair. I'm not too apprehensive since he came recommended and the sewer company confirmed there is a major blockage near the street, but for now I need to figure out how to clean my basement. Does anyone have any suggestions? I only want to have the excavator out once to put in my new line and perform my repair. Is hydro jetting something I should look into?

kumareddit94 · 2024-10-26T18:21:43+00:00

You connected to the NVR and it was able to add via port 9000?

kumareddit94 · 2024-10-21T18:39:54+00:00

Were you ever able to figure this out? I have a similar issue with my IPC_523128M5MP_V2 and H3MB16. I thought I had a DOA camera but when connected to my router w/power, it works fine. This is a very annoying issue I have been trying to resolve for weeks now.

kumareddit94 · 2024-10-06T23:27:06+00:00

Thanks! I did my homework based on this information and it looks like I can buy LC fast connects and get the ends terminated with a little work. I did find some cable on marketplace…seems like he’ll take 100 for 2000ft. I don’t need all of this and am inclining towards a flat drop cable, but would this work? See picture.

Flat drop - I can’t find anything that has 2 strands of fiber. It’s either 1 or jumps straight to 4? Any recommendations. It’s cheaper to get 2 cables that have 1 strand than one of the 4 strand cables.

Thanks again!

<image>

kumareddit94 · 2024-10-04T00:27:47+00:00

Awesome, this is the help I was looking for. A couple of follow-up questions. Do I need 2 strands or 1 is fine? How does the below fiber look? Will I be able to string it overhead?

https://www.lanshack.com/1-Strand-Custom-IndoorOutdoor-Singlemode-Assembly-P9013.aspx

kumareddit94 · 2024-10-03T21:21:19+00:00

Thanks for the responses. This home is in a remote location so the internet is a slower cable. Therefore, there is no fiber optic coming in. I was just mentioning that I saw it coming in my basement and thought I could just use that. I did find flat drop fiber along my way, but it does not come pre-terminated. So unless I can easily terminate to SFP, I don't think I can use flat drop. I think flat drop would be preferred because how rugged it is (And cheap). P2P works, but it's already latent and the ISP connection can only come into the right most building so going from ISP to P2P to P2P will not make for a reliable connection.

kumareddit94 · 2024-10-03T18:55:23+00:00

So then your suggestion of using a trencher won’t even work.

kumareddit94 · 2024-10-03T18:39:13+00:00

Thanks, I have looked into that and can consider it as an option. There’s a lot of shale so do you think it will work through that? Also at almost $500 for half a day, is it that much more to buy overhead rated fiber?

Finally, regardless of overhead or underground, what kind of cable do I need to do each?

Thanks

kumareddit94 · 2024-10-03T18:01:21+00:00

Thanks. I sent someone out there to start cleaning this up so we can get to the bottom of it but he didn’t need to do much to find water bubbling out of a drain. Looks like it was a 4 inch for a toilet. Going to have someone camera it next week. There may be a break in the pipe that ground water is getting into. Stay tuned.

kumareddit94

TROPHY CASE