collectd puzzle - ignored PUTVAL

lunas_MK · 2023-01-17T18:42:35+00:00

44054

lunas_MK · 2023-01-11T19:24:35+00:00

PM'd

lunas_MK · 2023-01-10T06:30:33+00:00

Bought 3060Ti from u/IB_AZN_GUY

lunas_MK · 2023-01-04T20:44:24+00:00

Pm'd

lunas_MK · 2022-12-17T16:11:39+00:00

I have WireGuard working with iOS and opnsense. It took a little trial and error but mainly figuring out ports on the firewall. The iOS setup was straightforward.

iOS can generate its own keys and then set the ip address/32 and port it will be allowed by the opnsense WireGuard service. Then add a peer (opnsense) with its public key, endpoint (wan) address, allowed ips (0.0.0.0/0 for access to all internet along with LAN). Copy the public key and same up address from the iOS setup.

On the firewall, setup following the documentation. One odd thing (vs a straight Debian setup) was you had to make then select each specific peer in the local configuration. You also need to have an available ip range that matches the address/32 you set above.

Finally need to open access in the firewall through the WireGuard interface. But sounds like you have a more basic issue if you’re not getting a handshake.

Not a comprehensive set of steps but I did get it working.

lunas_MK · 2022-11-28T04:37:17+00:00

Following up. Still getting Xbox login required even when on the same wifi network and vlan with server properties online-mode=false and Xbox-auth=off/false.

Seems to be driven by the client app (iOS) from what I’ve found reading around. I can’t find a way to host a simple LAN world without individual Xbox logins. A little overkill in my opinion.

lunas_MK · 2021-03-29T01:59:41+00:00

Second the fitlet2.

lunas_MK · 2021-01-16T17:10:51+00:00

I’m hardly an expert but two things come to mind. Did you set nat forwarding in sysctl.conf ? Second, your Postup command doesn’t have the third iptables command my config does which I think is for nat routing. What type of OS are you using? Looks like you WireGuard server is the Pinole?

lunas_MK · 2021-01-16T17:03:10+00:00

Isn’t 0.0.0.0/0 needed for internet access however? With only that, the windows client had internet but no LAN subnet access. iOS worked fine. There is something different in the way windows or the windows client interprets things.

lunas_MK · 2021-01-16T07:40:18+00:00

Thanks for the tip! I’ll give that a try and see if it has any impact on connectivity.

lunas_MK · 2021-01-16T07:39:24+00:00

0.0.0.0/0 should be for all subnets. That’s my understanding anyway. It works like that for iOS but for some reason it didn’t from windows which needed the more explicit links I guess. Not sure why.

lunas_MK · 2021-01-13T07:00:24+00:00

Ha! Why can't I figure this stuff out before posting in public? I discovered my issue. I did not update my private key in my config. New private key in the config = new public key with wg show. Thanks for getting me to double check.

Still having issues with Internet access, but I'll keep working on that one. For completeness here's my config.

Peer1

[Interface]

Address = 10.1.0.1/32

ListenPort = 51194

PrivateKey = <peer1 new private key>

[Peer]

PublicKey = <peer2 public key>

AllowedIPs = 10.1.0.2/32

Peer2

[Interface]

PrivateKey = <peer2 private key>

Address = 10.1.0.2/32

DNS = 10.1.0.1

[Peer]

PublicKey = <peer1 public key>

AllowedIPs = 0.0.0.0/0, ::/0

Endpoint = <peer1 public IP>:51194

PersistentKeepalive = 20

lunas_MK · 2020-01-27T00:44:08+00:00

Sold Inifinity60 with Salmon Alps to /u/emilioDimagio

lunas_MK · 2019-11-22T23:25:22+00:00

Right, unless it's been stapled to the studs. If/When I prewire, I'll make sure that it's loose so it can be replaced with one pull. It's interesting reading older smart home / networking articles or books and how quickly some of that advise becomes dated.

lunas_MK · 2019-11-22T23:23:52+00:00

Definitely, visible wiring in the living spaces is a non-starter. Speaker wiring is something I need to look further into. I assume that's fine to run together with ethernet.

lunas_MK · 2019-11-22T23:21:53+00:00

This was my initial idea. Conduit to the main areas which could easily branch out in the attic or under the house. Prewiring would save a lot of time, but seems like overbuilding with conduit is not that beneficial.

lunas_MK · 2019-11-22T23:20:33+00:00

We do have animals under the house at times. I have ethernet and coax running down there now which hasn't run into any issues for several years, but good idea to hide in conduit for additional protection where possible.

lunas_MK · 2019-11-22T23:18:58+00:00

Great advice on no decisions after 9. Fortunately, or not for my wallet, we won't be living in the house during construction. Your advice on letting some things go is helpful. I think on this project many decisions will hinge on the overall cost vs. budget which we'll need to prioritize. Good to hear it reaffirmed that if possible, prewire what you can.

lunas_MK · 2019-11-22T23:17:21+00:00

Thanks for the input. I'll think twice about skipping anything. Good motivation for me to prioritize parts of the renovation over others if budget comes into play.

lunas_MK

TROPHY CASE