I am trying to set up a wireguard server, so clients can access local fileservers. Which I managed with masquerading activated on the wireguard server.
But instead we require now that the clients get IP addresses from subnets which are already configured on our router (pfsense).
rough overview
I am not clear how to achieve this whilst the wireguard server is located in the DMZ and not behind the pfsense in our local network.
Can somebody give me pointers if this is achievable and how I would go about it? Also I am curious what the internal wireguard IP network is actually used for?
Setting up a wireguard server with masquerading works like expected, but the wireguard_client IP will be that of the wireguard server (external IP) when using the tunnel.
user24633760 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.