What local ID should I type for a WG behind MIP NAT to peer WG BOVPN
Hi all,
Due to some special reason, we must use Home routers with DMZ feature mapping the fix wan IP to my WG. And so WG is behind those Home routers.
Home Router W1 : 1.1.1.1
Home Router Lan: 192.168.1.1/24
Home Router W2 : 2.2.2.2
Home Router Lan: 192.168.1.254/24
WG: 192.168.1.2/24
Default route: 192.168.1.1/32
Static route: 4.4.4.4/32 -> 192.168.1.254
DMZ on those Home routers helps mapping the Wan public fix IP back to the WG.
The topology is like this.
W1 <-> W3 is the primary VPN [The Red line]
W2 <-> W4 is the Backup VPN [The Blue line]
So, my questions are:
What should I type into Local ID for both Primary and backup VPN?
Should I type 1.1.1.1 and 2.2.2.2 on it while the WG real IP was 192.168.1.2 ?
Best Answer
-
It could be any of these - all they need is to match on each end.
I would choose By IP Address, and use the public IP addr on the routers.
1
