Hi all.
I am trying to migrate all the self-hosted software that I am currently running in my NAS to a RPI4 running DietPi.
In the NAS I had a bunch of docker containers that I have already migrated to the RPI4. So far so good. Additionally, I had a VM in the NAS running DietPi in which I have Pihole + Unbound and Wireguard.
I have migrated pihole to the RPI4 and it is working smoothly. However, I am having hell of a time with wireguard. First, I tried to move my old config from the NAS VM to the RPI4. It did not work directly as the PRE and POST rules differ in both installs (there are references in the NAS config file to files that do not exist in the RPI4; do not know if this is due to being different architectures or to a different version of the software). Anyway, what I have done is to keep everything from the old install (that is still working) except PRE and POST rules, which I have copied from the default config created when installing the software. I restart the service, connect from the client and… timeout. The weird thing is that DNS queries are sent to the Pihole running on the RPi4 and that the wireguard handshake is done and the connection is established. However, all the queries time out.
My second chance was to fresh reinstall and keep the default config. Just changed DNS server to use my local server. Same result.
This is what I see when I run wg:
root@DietPi:/etc# wg
interface: wg0
public key: <key>
private key: (hidden)
listening port: 51820
peer: <key>
endpoint: <cell phone IP>:1466
allowed ips: 10.9.0.2/32
latest handshake: 3 seconds ago
transfer: 20.98 KiB received, 1.71 KiB sent
Any clues on what I might been missing? Networking works on the cell phone both on 5G without the VPN and on WiFi, so the problem might be in my configuration.
As I mentioned previously, I have several Docker containers and networks (and, thus, iptables rules). I do not know if that might be interferring somehow ???
Finally, where should I look for wireguard logs. I don not seem to find where they are located and searching for info I see that they must be activated with kernel dynamic logging (or a similar name) but the paths referred in those guides do not seem to work on my install (they are not DietPi specific but Debian’s or Ubuntu’s).
Thanks in advance for your help!