Skip to content

Firewall Configuration

These rules will allow all traffic from wireguard interface to the firewall. You might want to change this to your needs.

Wireguard Inbound Rule

Navigate to Firewall -> Rules -> WIREGUARD

Click ➕
Action: Pass
Interface: WIREGUARD
Direction: in
Address Family: IPv4
Protocol: any
Source: any
Destination: any
Click Save

wireguard-rule-wg-in-1 wireguard-rule-wg-in-2

WAN Rule

Navigate to Firewall -> Rules -> WAN

Click ➕
Action: Pass
Interface: WAN
Direction: in
Address Family: IPv4 (or IPv4+IPv6 if you want to allow IPv6)
Protocol: UDP
Source: any
Destination: WAN address
Destination port range:
- from: (other) 51820
- to: (other) 51820
Click Save

wireguard-rule-wan-1 wireguard-rule-wan-2

Click Apply changes