📄 WIREGUARD for Teltonika VPN Config

WIREGUARD for Teltonika VPN Config


Here's a more detailed breakdown:

1. Accessing the Router's Interface:

  • Connect to the Teltonika router's web interface, typically at http://192.168.1.1.
  • If the interface is in Basic mode, switch to Advanced mode. 

2. Creating the WireGuard Interface:

  • Navigate to Services > VPN > WireGuard.
  • Add a new instance, giving it a descriptive name (e.g., "wg0").
  • Enable the interface. 

3. Configuring the Interface:

  • General Setup:

    • Set the interface to ON to enable WireGuard. 

    • Assign a unique IP address and subnet for the VPN tunnel (e.g., 172.16.0.1/24). 

  • Advanced Settings:

    • Set a Listen Port (default is 51820). 

    • (Optional) Configure MTU, DNS servers, and other advanced settings. 

4. Adding Peers (Remote Devices):

  • Add a new peer instance, giving it a name (e.g., "client1").
  • General Settings:

    • Generate or input the peer's public key.
    • Enter the peer's endpoint (IP address or hostname).
    • Specify the Allowed IPs, which are the IP addresses and networks the peer should be able to access through the tunnel.
  • Enable routing of allowed IPs. 

5. Firewall Rules:

  • Add the WireGuard interface to the appropriate firewall zone (e.g., LAN or WAN) to control access to the VPN tunnel. 

6. Testing:

  • Ensure that the WireGuard configuration is correct, including IP addresses, keys, and firewall rules.
  • Test the connection by accessing resources through the VPN tunnel. 

Tips for Troubleshooting:

  • Double-check all configuration details, as even small errors can prevent connections. 

  • Ensure that the correct IP addresses, keys, and subnet masks are used. 

  • Consult the Teltonika documentation and community forums for specific guidance and troubleshooting tips.