Omada SDN Wireguard NordVPN Config

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Omada SDN Wireguard NordVPN Config

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Omada SDN Wireguard NordVPN Config
Omada SDN Wireguard NordVPN Config
2023-11-02 15:48:29 - last edited 2023-11-03 02:08:32
Tags: #VPN #NordVPN
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.2

What will you need to get the required information:

 

Linux box (I used Ubuntu 22 latest release)

There are many guides to do this. Just search how to install Nordlynx on Ubuntu.

 

1) Basically you need to install Nordlynx

2) Choose a server you want to connect to

3) Once connected you need the following

          - sudo wg showconf nordlynx

                 - PrivateKey = 3xU.......rU=

                 - Endpoint = NordVPN Server you are connected to

 

          - sudo wg show nordlynx

                 - public key = g8T.......Ya= (this is for verification)

                 - peer: cjJ......TS8=

 

           - sudo ifconfig nordlynx

                  - inet x.x.x.x

 

With the above information obtained you can now go to your ER605 Router through the Omada Controller

 

1) Select your Site from your Global Page

2) Setting (Gear at the bottom left)

3) VPN => Wireguard

4) Under the Wireguard Heading click "+ Create New Wireguard"

    name: wg0
    listen port: 51820
    Local IP: nordlynx interface IP (inet address from above)
    Private-key: nordlynx private-key

5) Click Apply

***If the private key you entered is correct the public key the router generates will be the same as you got from "sudo wg show nordlynx" (public key)

 

6) Under the Peers Heading click "+ Create New Peer"

    name: whatever you want
    endpoint: NordVPN Server you are connecting to
    enpoint: port: 51820

    Addresses Allowed: 0.0.0.0/0
    Public key: this is the peer you got from "sudo wg show nordlynx"

7) Click Apply

8) On the Far left side of the screen click on "Insights" (Lightbulb)

9) Click on the Wireguard tab

    You should see traffic up and down

 

***IMPORANT***

Note this config will push ALL traffic through the VPN

I haven't figured out how to just let a VLAN out on the Wireguard connection. It seems to be an all or nothing at this point.

 

  4      
  4      
#1
Options
4 Reply
Re:Omada SDN Wireguard NordVPN Config
2023-11-03 02:09:21

Hi @TechDad83 

Thanks for sharing your experience and knowledge here.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#2
Options
Re:Omada SDN Wireguard NordVPN Config
2024-01-17 10:49:23 - last edited 2024-01-17 10:54:45

  @TechDad83 

 

thank you very much, this was really helpful for me

 

    Local IP: nordlynx interface IP (inet address from above)
    Private-key: nordlynx private-key

5) Click Apply

***If the private key you entered is correct the public key the router generates will be the same as you got from "sudo wg show nordlynx" (public key)

 

I didn't know that you could use private key to generate a public key on interface. it made it "a little" easier. but I have the same problem as you, I only get the vpn to work if I route 0.0.0.0/0

 

it would be cool if it was fixed

 

 

 

  0  
  0  
#3
Options
Re:Omada SDN Wireguard NordVPN Config
2024-06-11 12:54:32

Has any one had any luck on figuring out the "route 0.0.0.0/0" issue?

 

Seems like it is all or nothing?

 

  0  
  0  
#4
Options
Re:Omada SDN Wireguard NordVPN Config
2024-06-12 01:03:22

Hi @Navas1 

Navas1 wrote

Has any one had any luck on figuring out the "route 0.0.0.0/0" issue?

 

Seems like it is all or nothing?

 

There is no routing effective to the VPN tunnel as it is already encrypted.

It is determined by your provider, not the client side. If there is a thing about the routing, that's PBR for the VPN tunnel. Not static routing.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#5
Options