WireGuard site-to-site VPN between GL.iNET and pfSense
Posted by jpluimers on 2026/01/12
Some links and notes that might help me getting WireGuard site-to-site VPN working between GL.iNET and pfSense.
- [Wayback/Archive] Wireguard Site-to-Site : PFSENSE
I’m using a GL-inet travel router (TravelLAN) to do a site-to-site VPN with my HomeLAN.
…
Here’s the screen grabs: imgur.com/a/nwRW4uASome more notes:Setting the MTU everywhere I could find to 1420 had no effect.I followed the pfSense site-to-site guide as best as I was able, however it is written for two pfSense instances.Others have told me they just made the tunnel, peer, and interface on pfSense, and put in the config info on the GL router, and it worked. But when I do that, yes, it connects, but I get the issues above.…
Your peer config looks weird, here is what mine looks like for my travel router and works perfectly (however I dont care about my pfsense side accessing clients behind the gl inet router)You arent doing a site to site VPN per say, you are making the travel router be a wireguard client and the gl inet is forcing all the traffic through the tunnelGet rid of the static route stuff you have setupUse /32 not /24Focus on getting the gl inet clients accessing all your internal resources on the pfsense first then worry about added extra capabilities (like the pfsense side accessing wireguard clients)…
Thanks! Could you show me your interface setup as well?
…
I meant the interface your tunnel on pfsense is using.
…
Is there something in the screenshots I posted in my other reddit post I am missing you wanted to see?I only use the /24 for the actual WG interface on pfsense, all my clients use /32 but again im not setting this up like a site to site VPN as I only care about my VPN router reaching into my internal network…
- [Wayback/Archive] How to make WireGuard Firewall settings “stick”? – Technical Support – GL.iNet was for connecting to pfSense 2.5.0, so what is described here might not be needed by now any more.
I solved my issue, but could not do that via the GL gui. I’ll give my solution here, as others might look for the same. Go to “MORE SETTINGS” → “Advanced” and log in Hover over “System” and go to “Software” Search for “luci-proto-wireguard” and klick “install” Hover over “Network” and go to “Interfaces” “Add new interface…” Choose a name for the Interface Select “WireGuard VPN” as protocol Make WireGuard Settings like in the GL gui As allowed IPs choose the Range of the remote network and add…
- [Wayback/Archive] Site to Site with pfSense – Technical Support – GL.iNet is kind of disappointing as it did not provide either a solution or a hint of attaining one.
- [Wayback/Archive] Connect GL.iNet using Wireguard client :: Acreto.io Knowledge Base: not sure how well this could work as in the description OpenVPN and WireGuard as both used throughout multiple places on the page.
- [Wayback/Archive] WireGuard site to site, only one way working… : PFSENSE refers to a few video’s that have since then have been made private on YouTube:
- [Wayback/Archive] Wireguard site to site DNS not working : WireGuard suggests the problem described is caused by not having the correct routing rules applied:
Hi, I have successfully setup a site to site tunnel using wireguard. Pfsense on both sidesMain location has10.0.0.0subnet and10.10.10.0for tunnel, windows dns on domain controllerRemote location has10.0.2.0subnet and10.10.10.1for tunnel, pfsense dnsI followed netgate instructions for setting everything up.I can ping every address from both sides and connect remotely using ip, but pinging and also remote connections by dns name don’t work.Any suggestions?
Queries:
Images from the above links:
–jeroen
The Wiert Corner - irregular stream of stuff 
Leave a comment