#general
Title
# general
m
microscopic-appointment-2506
05/21/2022, 11:53 AMI was playing around with netmaker, installed it inside docker network 172.22.0.0/16, and created a network inside netmaker as 192.168.3.0/24 with one ext client on my mobile phone and one node using the new macos installer. Was able to join the network and it shows as healthy. Then I wanted to configure the netmaker-1 (192.168.3.254) to egress the local docker network 172.22.0.0 which works on mobile, but not on macos.
When I look at the routing table on macos I can see the route to 192.168.3.0, but not to 172.22.0.0
Is that because of "The Netclient specifically ignores gateways that overlap with local ranges"
b
bored-island-21407
05/21/2022, 11:56 AMPossibility, what are the existing networks on the mac
m
microscopic-appointment-2506
05/21/2022, 11:58 AM Copy code
Internet:
Destination Gateway Flags Netif Expire
default 192.168.1.1 UGScg en0
127 127.0.0.1 UCS lo0
127.0.0.1 127.0.0.1 UH lo0
169.254 link#7 UCS en0 !
192.168.1 link#7 UCS en0 !
192.168.1.1/32 link#7 UCS en0 !
192.168.1.1 18:e8:29:44:d7:a6 UHLWIir en0 1197
192.168.1.2 b8:27:eb:ed:1e:7a UHLWI en0 1193
192.168.1.3 0:11:32:89:1b:69 UHLWIi en0 1177
192.168.1.4 0:11:32:89:1b:69 UHLWIi en0 210
192.168.1.95 70:2c:9:ec:49:b9 UHLWI en0 457
192.168.1.105/32 link#7 UCS en0 !
192.168.1.255 ff:ff:ff:ff:ff:ff UHLWbI en0 !
192.168.3.1 utun3 UHS utun3
224.0.0/4 link#7 UmCS en0 !
224.0.0.251 1:0:5e:0:0:fb UHmLWI en0
239.255.255.250 1:0:5e:7f:ff:fa UHmLWI en0
255.255.255.0 192.168.3.1 UH utun3
255.255.255.255/32 link#7 UCS en0 !where utun3 is the wireguard one
b
bored-island-21407
05/21/2022, 12:00 PMDoes wg show have the 172 network in allowed ips
m
microscopic-appointment-2506
05/21/2022, 12:02 PMit just shows this:
Copy code
interface: utun3
public key: XXXXXX
private key: (hidden)
listening port: 56360 Copy code
sudo wg showconf utun3
[Interface]
ListenPort = 56360
PrivateKey = XXXXXXb
bored-island-21407
05/21/2022, 6:39 PMand that is the conf file that was generated for an ext client?
m
microscopic-appointment-2506
05/21/2022, 6:57 PMno, this is the output on my mac. I installed wireguard-go and netclient 0.14 and let it connect with an access token
b
bored-island-21407
05/21/2022, 6:58 PMOk I misunderstood your earlier comment.
If you do a netclient pull does the config get updated
m
microscopic-appointment-2506
05/21/2022, 6:59 PMthe config for ext clients is as follows:
Copy code
[Interface]
Address = 192.168.3.2/32
PrivateKey = XXXX
MTU = 1280
DNS = 172.22.0.5
[Peer]
PublicKey = XXXX
AllowedIPs = 192.168.3.0/24,172.22.0.0/16
Endpoint = XXXX:51821
PersistentKeepalive = 20 Copy code
sudo netclient pull -vvv
Password:
[netclient] 2022-05-21 21:00:46 No network selected. Running Pull for all networks.
[netclient] 2022-05-21 21:00:56 waiting for interface...
[netclient] 2022-05-21 21:00:56 interface ready - netclient.. ENGAGE
[netclient] 2022-05-21 21:00:56 pulled network config for home
[netclient] 2022-05-21 21:00:56 register at https://api.XXXX:443/api/server/register
[netclient] 2022-05-21 21:00:56 certificates/key saved
[netclient] 2022-05-21 21:00:57 reset network and peer configs Copy code
sudo netclient list -vvv
{"networks":[{"name":"home","node_id":"XXX","current_node":{"name":"MacBook-Prolocal","interface":"nm-home","private_ipv4":"192.168.3.1","public_endpoint":"XXX"},"peers":[]}]}not sure why peers is empty on the mac
b
bored-island-21407
05/21/2022, 7:03 PM/var/log/com.gravitl.netclient.log
You could try the homebrew installer and see if that works better
m
microscopic-appointment-2506
05/21/2022, 7:13 PMI installed it via brew
uninstalled wireguard-tools, wireguard-go and netclient, and just ran install netclient which installed the other 2 again
same result
all with brew ofcourse
3 Views