Hello, everyone. I'm trying to set up a VPN connection using ProtonVPN on a MIkrotik RB960PGS. I followed this https://protonvpn.com/support/wireguard ... k-routers/ official guide but it puts everything under the VPN and it worked but I only need two TV's under this VPN. I already tried to modify it unsuccessfully to fit my scenario with no results, traffic continue as usual.
I'm going to post here what I did but pretty sure is far away from the solution. Can someone please help me out?
/interface wireguard add listen-port=13231 mtu=1420 name=wireguard-inet private-key="*******"
/ip address add address=10.2.0.2/32 interface=wireguard-inet network=10.2.0.0
/interface wireguard peers add allowed-address=192.168.10.13/32 endpoint-address=XX.XX.XX.XX endpoint-port=51820 interface=wireguard-inet persistent-keepalive=25s public-key="******"
/ip firewall nat add action=masquerade chain=srcnat out-interface=wireguard-inet src-address=192.168.10.13/32
/ip firewall nat add action=masquerade chain=srcnat out-interface=wireguard-inet src-address=192.168.10.12/32
/ip route add disabled=no dst-address=XX.XX.XX.XX/32 gateway=[/ip dhcp-client get [find interface=ether1] gateway] routing-table=main suppress-hw-offload=no
on my DNS page though the UI I added the VPN DNS first 10.2.0.1 and below 1.1.1.1 and added the other IP in the wireguard peers page
My network is very basic but I have a lot of devices. A cablemodem in bridge mode with static IP ---> Mikrotik router -> Unmanaged Switch ----> Wireless AP
I'm going to post here what I did but pretty sure is far away from the solution. Can someone please help me out?
/interface wireguard add listen-port=13231 mtu=1420 name=wireguard-inet private-key="*******"
/ip address add address=10.2.0.2/32 interface=wireguard-inet network=10.2.0.0
/interface wireguard peers add allowed-address=192.168.10.13/32 endpoint-address=XX.XX.XX.XX endpoint-port=51820 interface=wireguard-inet persistent-keepalive=25s public-key="******"
/ip firewall nat add action=masquerade chain=srcnat out-interface=wireguard-inet src-address=192.168.10.13/32
/ip firewall nat add action=masquerade chain=srcnat out-interface=wireguard-inet src-address=192.168.10.12/32
/ip route add disabled=no dst-address=XX.XX.XX.XX/32 gateway=[/ip dhcp-client get [find interface=ether1] gateway] routing-table=main suppress-hw-offload=no
on my DNS page though the UI I added the VPN DNS first 10.2.0.1 and below 1.1.1.1 and added the other IP in the wireguard peers page
My network is very basic but I have a lot of devices. A cablemodem in bridge mode with static IP ---> Mikrotik router -> Unmanaged Switch ----> Wireless AP
Statistics: Posted by jigzat — Sun May 19, 2024 6:27 am