Running into a very weird Wireguard issue. I have had a site-to-site configured for years that worked perfectly. After some recent updates, that is no longer the case. The web UI and UCI config show the right allowed_ips but wireguard’s wg show and wg showconf commands do not have all of the allowed IPs, only the SiteA peer.
Site A: 10.50.50.1, 192.168.0.0/24 network
Site B: 10.50.50.2, 192.168.8.0/24 network
UCI Config
network.@wireguard_wg0[0]=wireguard_wg0
network.@wireguard_wg0[0].public_key='beWaWctBlITqnmdvPxK3s3NSAmN1VGNRnVtlaTo1RHc='
network.@wireguard_wg0[0].preshared_key='[redacted]'
network.@wireguard_wg0[0].endpoint_host='[redacted]'
network.@wireguard_wg0[0].endpoint_port='[redacted]'
network.@wireguard_wg0[0].persistent_keepalive='25'
network.@wireguard_wg0[0].route_allowed_ips='1'
network.@wireguard_wg0[0].description='SiteA'
network.@wireguard_wg0[0].allowed_ips='10.50.50.1/32' '192.168.0.0/24'
WG UI
However, when I look at wg show output, the endpoint is not configured with the 192 network.
wg show output
peer: [redacted]
preshared key: (hidden)
endpoint: [redacted]:[redacted]
allowed ips: 10.50.50.1/32
latest handshake: 1 minute, 12 seconds ago
transfer: 4.26 MiB received, 323.04 KiB sent
persistent keepalive: every 25 seconds
wg showconf output
[Peer]
PublicKey = [redacted]
PresharedKey = [redacted]
AllowedIPs = 10.50.50.1/32
Endpoint = [redacted]:[redacted]
PersistentKeepalive = 25
As you can see, the connection is on. I can access SiteB at 10.50.50.1 but I cannot access anything on the 192.168.0.0/24 network.
I have reset the interface, the entire network, and I have rebooted the router. The 192 network is just not showing up anywhere.
Any troubleshooting tips?