Can't reach OMV via VPN Wireguard

    Hi there,


    I have a working VPN-Connection via Wireguard to reach my LAN-Clients from outside my WIFI.

    Wireguard is configured at my OPENWRT-Router and works perfect for months now.


    I can reach all my clients except OMV.


    My setup:


    Router IP: 192.168.1.1

    Proxmox HOST IP: 192.168.1.100 (reachable)

    OMV Proxmox VM: 192.168.1.33 (NOT reachable)


    Other Proxmox VMs and LCXs like Home Assistant are reachable via VPN too, so I think it is not a problem of Proxmox.


    I can't reach the OMV web-gui neither the SMB-shares via VPN.

    In local WIFI everything works.


    There are NO firewall-rules set in OMV. Is this the problem?

    Hello !

    Exactly the same problem for me.
    My router is from my ISP, with a built-in Wireguard VPN, and I'm unable to reach OMV when connected to it.


    Router IP : 192.168.1.254
    OMV (DIY NAS) : 192.168.1.131

    Wireguard Clients : From 192.168.27.65 to 192.168.27.94 range

    I'm able to ping my router or mount the share of the NVME inside of it, but unable to do things with OMV (Ping not responding, ssh connection unavailable, UI not reachable).

    No firewall rules set on OMV, I've tried to dump all the firewall rules created by docker containers and so, set everything open, also not working.

    Hi. Thanks for your reply.


    I don't use docker - everything is directyl in a Proxmox VM. The same setup is on a second Proxmox VM for Home Assistant.

    So my hunch was, that OMV is the problem.


    Now I noticed that the OMV VM says "Guest Agent not configured".

    So maybe there is a problem with Proxmox. But I don't know if I have to configure the "guest agent" at OMV or Proxmox.


    But maybe this is a hint for the solution.


    ::: Edit :::

    Nope, both VMs have now "Guest Agent" and still the Home Assistant VM is available via VPN and the OMV VM is not.


    What I noticed now what's really strange for me is that I have a Docker inside OMV with paperless and the paperless-server inside the OMV docker is reachable....


    So:

    Router (reachable)

    |_Proxmox Host (reachable)

    |__Home Assistant VM (reachable)

    |__OMV VM (not reachable)

    |___Paperless Webgui (Docker under OMV) (reachable)



    WTF?! Can someone explain this?

    Hi Antares,

    I managed to make it work.
    Maybe i can help you, the solution could be the same.

    Could you drop here your "ip route" from OMV ssh ? What is your Wireguard clients IP range ?

    If someone see this, is it hazardous to add another ip route on OMV ?
    I added 192.168.27.0/24 and that does the trick, but is it secure ?

    Hi,


    I am thankful for every help.

    Code
    root@openmediavault:~# ip route
default via 192.168.1.1 dev ens18 proto dhcp src 192.168.1.33 metric 100
10.88.0.0/16 dev cni-podman0 proto kernel scope link src 10.88.0.1
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
172.18.0.0/16 dev br-d06844e8ccec proto kernel scope link src 172.18.0.1
192.168.1.0/24 dev ens18 proto kernel scope link src 192.168.1.33 metric 100
192.168.1.1 dev ens18 proto dhcp scope link src 192.168.1.33 metric 100
192.168.1.32 dev ens18 proto dhcp scope link src 192.168.1.33 metric 100


    I don't know my Wireguard clients IP range. How can I see this?
    But does this matter? I can reach for example 192.168.1.1 (router) from outside the WIFI and I can also reach 192.168.1.32 or 192.168.111 for example.

    So the OMV VM (192.168.1.33) is between all these examples. Or do you mean something different?


    It's crazy for me, that I can also reach 192.168.1.33:8010 (PaperlessNGX Docker-Addon INSIDE OMV), but can't reach 192.168.1.33:80 (Webinterface). Same IP but different port. Maybe the port is the problem? And CIFS/SMB doesn't work either - of course the IP is also 192.168.1.33. In WIFI I can open the SMB-Folders via smartphone Network-Browser, via VPN not...

    Hi everyone,

    I have the same issue one year later. I don't understand "The Why?"


    - Have you found a solution?

    - Are there any configs to change directly in OMV?


    Thank you

    I set up Wireguard on my router and can connect to remotely, but can't access the OMV system. The wireguard endpoint IP at the router is 192.168.21.1 and my OMV system is 192.168.1.40. My LAN is 192.168.1.0/24 and I can reach all other computer on my lan by ip or name (the router is the DNS server), but can't access the OMV system. (Ping or any other access.)


    My OMV system is 7.17.13-2


    Do I need a firewall change or a routing table change or what?

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!

Register Yourself Login