Wireguard Site2Site with mobile office

wireguard

Unless you have some additional firewall rules set up on the Lan1 gateway host, traffic from your "road warrior" cell phone will be forwarded from your Lan1 gateway to your Lan2 gateway using the phone's original WireGuard source address of 10.100.1.2. So you need to add the phone's address to the AllowedIPs setting in the WireGuard configuration for the Lan2 gateway host:

AllowedIPs = 10.100.1.1/32, 10.100.1.2/32, 10.240.0.0/24

The Lan2 gateway will drop any packets it receives from its WireGuard connection with the Lan1 gateway when the packet's source address is not included in this AllowedIPs setting.

Related

How do I set a postgresql password in pgpass.conf for the Administrator account on Windows Server 2008?
How to remove git from a specific folder?
Cannot start wildfly with systemd
Ideas for a Linux solution to use as much of 95th percentile bandwidth as possible?
Cloud run over reverse proxy throws 404
How can I replace my on-premise server with something on Azure?
How to do mysql_secure_installation via ansible playbook?
How to use the output of a command inside ansible ini_file value
Only able to connect to Wireguard peer after I ping the server
What is copy elision and how does it optimize the copy-and-swap idiom?
How to change style of a default EditText
How can I filter ListView data when typing on EditText in android