WIREGUARD for Teltonika VPN Config
Here's a more detailed breakdown:
1. Accessing the Router's Interface:
- Connect to the Teltonika router's web interface, typically at http://192.168.1.1.
If the interface is in Basic mode, switch to Advanced mode.
2. Creating the WireGuard Interface:
- Navigate to Services > VPN > WireGuard.
- Add a new instance, giving it a descriptive name (e.g., "wg0").
Enable the interface.
3. Configuring the Interface:
General Setup:
Set the interface to ON to enable WireGuard.
Assign a unique IP address and subnet for the VPN tunnel (e.g., 172.16.0.1/24).
Advanced Settings:
Set a Listen Port (default is 51820).
(Optional) Configure MTU, DNS servers, and other advanced settings.
4. Adding Peers (Remote Devices):
- Add a new peer instance, giving it a name (e.g., "client1").
General Settings:
- Generate or input the peer's public key.
- Enter the peer's endpoint (IP address or hostname).
- Specify the Allowed IPs, which are the IP addresses and networks the peer should be able to access through the tunnel.
Enable routing of allowed IPs.
5. Firewall Rules:
Add the WireGuard interface to the appropriate firewall zone (e.g., LAN or WAN) to control access to the VPN tunnel.
6. Testing:
- Ensure that the WireGuard configuration is correct, including IP addresses, keys, and firewall rules.
Test the connection by accessing resources through the VPN tunnel.
Tips for Troubleshooting:
Double-check all configuration details, as even small errors can prevent connections.
Ensure that the correct IP addresses, keys, and subnet masks are used.
- Consult the Teltonika documentation and community forums for specific guidance and troubleshooting tips.