Problem with setting pi hole + wireguard

ilyasabdut · April 30, 2020, 7:20pm

Please follow the below template, it will help us to help you!

. i have a problem in setting pi hole + wireguard. im using windows laptop for and dietpi in virtualbox as a pi hole + wireguard server. the only problem is setting the wireguard, the endport should be for server ip public/ddns right?

Expected Behaviour:

i could connect my devices outside my homenetwork

Actual Behaviour:

after i set ddns in my router, i cant access router dashboard anymore
if i set my pi hole address for endpoint, i can browse just fine but i cant access my homenetwork from outside, but if i use ddns/public ip address for endpoint i cant even browse anything
in my windows if i activate vpn, then the endpoint becomes my pihole dns, but in my iphone the endpoint becomes the public ip

Server conf

[Interface]
Address = 10.6.0.1/24 (tried 10.200.200.0/24)
ListenPort = 443 (tried 51820 too)


PrivateKey = Server_private.key
PostUp = iptables -A FORWARD -i %i -j ACCEPT ; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE

[Peer]
PublicKey = clientkey
AllowedIPs = 10.6.0.2/32

[Peer]
PublicKey = clientkey
AllowedIPs = 10.6.0.3/32

[Peer]
PublicKey = clientkey
AllowedIPs = 10.6.0.4/32

Client Conf

[Interface]
PrivateKey =clientkey
ListenPort = 443 (tried 51820)
Address = 10.6.0.2/24 (tried 10.200.200.0/24)
DNS = 192.168.0.xxx (pihole dns)

[Peer]
PublicKey = serverkey
AllowedIPs = 0.0.0.0/0
Endpoint = my.ddns.net:443 (tried with public ip)

ip tables

Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
ACCEPT     udp  --  anywhere             anywhere             udp dpt:51820 ctstate NEW
ACCEPT     tcp  --  10.200.200.0/24      anywhere             tcp dpt:domain ctstate NEW
ACCEPT     udp  --  10.200.200.0/24      anywhere             udp dpt:domain ctstate NEW

Chain FORWARD (policy DROP)
target     prot opt source               destination         
DOCKER-USER  all  --  anywhere             anywhere            
DOCKER-ISOLATION-STAGE-1  all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
DOCKER     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere             ctstate NEW
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain DOCKER (1 references)
target     prot opt source               destination         

Chain DOCKER-ISOLATION-STAGE-1 (1 references)
target     prot opt source               destination

is it because my port is closed by the isp?

Port 21 ftp Closed 
Port 22 ssh Closed 
Port 23 telnet Closed 
Port 25 smtp Closed 
Port 80 http Closed 
Port 110 pop3 Closed 
Port 115 sftp Closed 
Port 143 imap Closed 
Port 443 https Closed 
Port 1433 ms-sql-s Closed 
Port 3306 mysql Closed 
Port 3389 ms-wbt-server Closed 
Port 5900 rfb Closed 
Port 8080 webcache Closed

Debug Token:

https://tricorder.pi-hole.net/lovvk500ab

system · May 21, 2020, 8:35pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.