Need Help Setting Up WireGuard VPN on GL.iNet Routers (Beryl as Server, Opal as Client)

Hi everyone,

I’m experiencing some challenges with setting up a WireGuard VPN network using my GL.iNet routers and am looking for some troubleshooting advice. Here’s the comprehensive breakdown of my setup and the efforts I’ve undertaken so far:

Equipment and Setup:

• Main Router: Comcast router.
• VPN Server: GL.iNet Beryl GL-MT3000, firmware 4.5.16.
• VPN Client: GL.iNet Opal GL-SFT1200, firmware 3.205.
• Mobile Client: iPhone, which connects successfully using the WireGuard mobile app.

Server Configuration:

• Followed the instructions for setting up the WireGuard server on the Beryl router from GL.iNet’s documentation (WireGuard Server Setup).
• Enabled Dynamic DNS on the Beryl server and checked the “Use DDNS Domain” option when generating config files for the WireGuard server.
• The Beryl router is connected via Ethernet to the main Comcast router.

Client Configuration:

• Attempted setting up the Opal router as a client using guides for WireGuard clients (GL.iNet Client Setup v4, GL.iNet Client Setup v3).
• For the iPhone, I used the WireGuard mobile app to scan a QR code for configuration, and it connects perfectly, allowing me to access the internet with my home IP address when on mobile data.

Port Forwarding:

• Enabled on the Comcast main router, forwarding UDP port 51820 to the Beryl router’s IP address (10.0.0.159).

Resources Used:

• I have also utilized this GL.iNet setup video: GL.iNet YouTube Setup Video

Issue:

• Despite successful connection and functionality with the iPhone client, the Opal router fails to connect as a client. I’ve double-checked configuration files, rebooted devices, and re-added profiles without success.

Does anyone here have experience with similar issues or any insights into what might be going wrong? It’s puzzling why the setup works flawlessly with the iPhone but not with the Opal router.

Thanks in advance for any help or suggestions!

Update: I was able to get my Opal Wireguard client connected to the Berly AX Wireguard Server. The issue I was having was having my Wireguard Server IP set to the same IP range as my Beryl Server. Also my firmware on my Opal server was upgraded from 3.x to 4.x.

I was also using my iPhone hotspot for my Opal router to access to internet. There were issues in connecting it via tethering and repeating but after several attempts I was able to connect the router. Once I upgraded my firmware and regenerated the configurations for the Client profiles with DDNS enabled, I was able to connect my VPN Wireguard client to the VPN Wireguard Server. Big thanks to /u/NationalOwl9561

You did make your Wireguard server IP address a different subnet from your ISP router’s 10.0.0.1 right? I assume so since you say your iPhone works while connected to the VPN.

Got it working now? I’m setting up a wireguard server on my Beryl AX to my comcast xfinity router and hoping it doesn’t have any issues!

Both my Wireguard server (IP 10.0.0.159) and my ISP router (IP 10.0.0.1) are on the same subnet (10.0.0.0/24)

I thought the Wireguard server and the ISP router should be on the same subnet to ensure communication.

Edit: Also my ISP IP Address is Dynamic, so I enabled DDNS for the wireguard server and make sure the config files are aware of that dynamic public ip.