Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1798
Views
2
Helpful
16
Replies

Wireguard VPN inaccessible from WAN

Exor
Level 1
Level 1

‎07-07-2023 01:15 PM

Hello everyone,

I made a Wireguard VPN server in Proxmox with no internal firewall. Our firewall is Cisco Firepower 1120 which manages all the aspects.

I have tested connecting to VPN server from within LAN and it worked but no internet access, I added iptables and now it's working. So, I know VPN server is working. I am still not able to connect to the VPN server from outside of LAN. Wireguard is not able to handshake with the server.

This might be ip/port forwarding issue. I may be missing something. I have the following set up already below. Let me know if I am missing something? Any help is appreciated!

Exor_1-1688760640662.png

Exor_2-1688760710888.png

 



16 Replies 16

Aref Alsouqi
VIP
VIP

‎07-09-2023 04:13 PM - edited ‎07-09-2023 04:14 PM

What that VPN port is? Did you make sure that the firewall itself is not running any VPN services on the same port? Not sure if the firewall would return any error in that case when you try to configure the NAT rule.

0 Helpful

Exor
Level 1
Level 1
In response to Aref Alsouqi

‎07-10-2023 05:49 AM

VPN port is 51820. Firepower is not running any VPN services; we do not have license for it which is why I am testing Wireguard VPN server instead. I can confirm there is no duplicate port being used in Firepower's ports list.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card