I have two pfSense boxes (pf.home and pf.remote) that are connected via wireguard tunnel.
Connection to services behind the boxes works fine but I have a problem with the connection between the boxes itself.
In general connection works but I'm scratching my head a bit.
I can only ping from pf.home to pf.remote if I specify the source address.
ping 10.10.0.1
PING 10.10.0.1 (10.10.0.1): 56 data bytes
ping -S 10.0.0.1 10.10.0.1
PING 10.10.0.1 (10.10.0.1) from 10.0.0.1: 56 data bytes
64 bytes from 10.10.0.1: icmp_seq=0 ttl=64 time=12.239 ms
The route looks fine:
route -n get 10.10.0.1
route to: 10.10.0.1
destination: 10.10.0.0
mask: 255.255.0.0
gateway: 10.250.0.2
fib: 0
interface: tun_wg1
flags: <UP,GATEWAY,DONE,STATIC>
recvpipe sendpipe ssthresh rtt,msec mtu weight expire
0 0 0 0 1500 1 0
I have also setup a domain override for domain "remote" on "home" to resolve hostnames from the other pfSense box but when doing so it results in a timeout.
nslookup pf.remote
;; communications error to 127.0.0.1#53: timed out
;; communications error to 127.0.0.1#53: timed out
I suspect it has a similar root issue as with the ping but I'm not sure. And I wonder what is misconfigured here? Any ideas? Happy to provide more information if needed.