Peer enables invalid remote server ip address 127.0.0.0 when connected. Device is an iPhone 16 with latest public iOS. Server is running Ubuntu 24.04 LTS on Raspberry Pi 5
Client .conf configuration file:
[Interface] PrivateKey = <Peer’s private key> Address = 10.8.0.10/24 DNS = <My local DNS servers>
[Peer] PublicKey = <Remote server’s public key> Endpoint = <public FQDN>:51820 AllowedIPs = 0.0.0.0/0 PersistentKeepalive = 30
Any suggestion about what I have done wrong
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Sign up for Infrastructure as a Newsletter.
Working on improving health and education, reducing inequality, and spurring economic growth? We'd like to help.
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
Thank you @KFSys and @alexdo for your help! There was an incorrect port forwarding on my external firewall that I had overlooked. When rule was correct WireGuard clients successfully connects. Obvious mistake, but sadly not discovered.
Heya, @kjellingemeisal
I’ll recommend checking the logs and also restarting the Wiregard service.
To check the server logs you can run:
Also if you’ve made any recent DNS changes this can take some time to properly update.
Regards
Heya,
1. DNS Resolution:
<public FQDN>
provided in theEndpoint
field resolves correctly to the public IP address of your server. You can manually verify this by running a DNS lookup from your iPhone or any other device.127.0.0.0
, which is invalid.2. Endpoint Configuration:
Endpoint
value to ensure it’s correctly formatted. It should be something likeyour.domain.com:51820
.3. Allowed IPs:
AllowedIPs = 0.0.0.0/0
should allow all traffic through the VPN tunnel. However, this will route all traffic through the tunnel, which might be unnecessary if you only need specific routes.AllowedIPs
to the required subnets.4. PersistentKeepalive:
PersistentKeepalive = 30
is fine, especially if you’re trying to maintain a connection behind NAT. However, this setting should not impact the IP address resolution.5. Check the Server Configuration:
51820
(or whichever port you’ve chosen).