Hi!
I have a WG server that announces both default GW routes for both AFIs (IPv4 0.0.0.0/0 + IPv6 ::/0) and it also sends a few routes. IPv4 is fine because we push only RFC1918 routes. But for IPv6 I need to push route that contains the VPN server IP.
I.e. I am pushing 2001:db8::/32 and the VPN server is 2001:db8::1. I also added route 2001:db8::1/128 with “Block Route and Net Gateway” in GUI, which generates net_gateway OpenVPN routes.
When the clients accept the default GW from the server everything works fine. When the client has “Disable Default Gateway” option enabled the WG mode does not work over IPv6 and it simply fails with Handshake Timeout.
Apparently the 2001:db8::1/128 with “Block Route and Net Gateway” is ignored in WG mode. I guess it is in fact ignored here: pritunl-client-electron/service/profile/profile.go at master · pritunl/pritunl-client-electron · GitHub
Is there any way to work this around or are there any plans to implement net_gateway functionality in WG mode?