Post · bonfire.cafe

welp, my latest Fedora KDE update borked my Wireguard installation. No discernable errors. It just... won't connect to its peer.

Maybe it's time to do something other than Fedora...

#fedora #wireguard #linux

mkj

@mkj@social.mkj.earth replied · 4 weeks ago

@rwg Probably the biggest downside with Wireguard. As long as it works, it's really simple. If something breaks, it can be virtually impossible to debug because *all* failures look the same: there is no usable diagnostic information other than whether or not traffic flows through the tunnel.

Try adding input and output firewall rules respectively matching the remote peer with (in nftables, adjust if necessary) something like "counter accept". See if Wireguard is trying to pass data both ways.

Ben Stokman

@benjistokman@mast.benstokman.me replied · 4 weeks ago

@rwg have you checked that the WireGuard system has the interface set up?

Robert W. Gehl

@rwg@aoir.social replied · 4 weeks ago

@benjistokman yes

Ben Stokman

@benjistokman@mast.benstokman.me replied · 4 weeks ago

@rwg If possible, you could try to recreate the network/socket/routing conditions. Set up a UDP socket on the other end and see if you can connect to it. Also check your MTU settings, although I don't think that low MTU affects the handshake itself. It'll just cause packets to be dropped.

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0-rc.2.11 no JS en

Automatic federation enabled