Port Forward on secondary WAN

sherman · January 7, 2025, 10:20am

Context: WireGuard server is set up on another server, not the router. Existing clients already configured and worked well with previous router.

I have two WAN connections. WAN2 (SFP+) is my primary connection (selected during BLE Setup) behind CGNAT. WAN1 is my secondary connection and has a static IP.

I’d like to configure a port forward for my WireGuard server (192.168.1.50) to only go through WAN1 since it has the static IP, as well as to have the wireguard’s network (172.16.0.0/24) be routed back to the WireGuard server.

How can I go about configuring this?

Alta-Josh · January 7, 2025, 3:01pm

Have you tried just adding a rule applied to your public static address?

sherman · January 7, 2025, 9:03pm

Yes, it did not work

Alta-Josh · January 8, 2025, 12:14am

Sorry, I think this may still depend on some upcoming features for now.

lohbe · February 1, 2025, 11:35am

This is my use case as well. The incoming direction seems to forward fine, but not the outgoing one. Could there be a workaround firewall rule for this asymmetric routing scenario?