Way to prevent Clients to use Wireguard Tunnel

Way to prevent Clients to use Wireguard Tunnel

15 Reply
Re:Way to prevent Clients to use Wireguard Tunnel
2024-01-22 20:28:26

I have same or similar problem. 

On the client side I need to set 0.0.0.0/0 as allowed IP addresses so that all traffinc goes through the tunnel.

However, on the Server side (Omada gateway) I am not able to create any rule that would block WG Client to access all LANs and VLANs (complete internal network).

I need to have one client have access only to internet and one specific VLAN and nothing else. Is this possible? Or do we need to wait for the ER605 updated firmware?

  0  
  0  
#12
Options
Re:Way to prevent Clients to use Wireguard Tunnel
2024-02-05 13:09:59

  @Clive_A 

Any update to WireGuard with Policy Routing? Q1 is in full swing and we haven't heard anything on this for any beta releases etc.

This is a long requested essential feature and would elevate the WireGuard VPN feature from workable to useful.

  1  
  1  
#13
Options
Re:Way to prevent Clients to use Wireguard Tunnel
2024-02-06 00:58:46

Hi @s42p 

Thanks for posting in our business forum.

s42p wrote

  @Clive_A 

Any update to WireGuard with Policy Routing? Q1 is in full swing and we haven't heard anything on this for any beta releases etc.

This is a long requested essential feature and would elevate the WireGuard VPN feature from workable to useful.

Don't rush it. That's only an estimation and it may be delayed or advanced like the statement writes. It is a timeframe provided by the team with a schedule check but it is not final or definite.

And there are still about 50 days left this quarter.

And if you feel it is a "long" request, you may visit the request sector where there are tons of feature requests. There is a priority in the eyes of the PM and dev team. What you think is the most important may not match the priority of the team. Please be patient.
 

About this specific request, I have not heard anything so far and I'll update the beta or official firmware as soon as I am notified.

 

Think I will add a more detailed disclaimer to any statement I make in the future.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#14
Options
Re:Way to prevent Clients to use Wireguard Tunnel
2024-06-11 13:07:13

hello there,

 

is any update ? We are in the month of June 2024. Please let us know the status.

  0  
  0  
#15
Options
Re:Way to prevent Clients to use Wireguard Tunnel
2024-06-12 01:53:57

Hi @Navas1

FYI, the template could be advanced or delayed because of development progress:

Thanks for your valuable feedback and post here. This request has been added to the roadmap. Yet it's not the highest priority task and this might take some time before you see this feature available. You can pay attention to the firmware release in the future.
As a reminder, we are not able to give a specific date for a beta or official firmware release. Nor can we guarantee an ETA for the firmware. We recommend you subscribe for the Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#16
Options