The following document guides the configuration of the Wireguard VPN Client on the PIAP Routers and Access Points.
1. User should have the Wireguard Server Endpoint and the Peer information from the Wireguard Server.
Login to PCC dashboard https://cloud.prontonetworks.com
Navigate to Configuration >> VPN Configuration
Configure the following details:
Connection Name: Enter the name of the VPN connection
Enable: Make “Yes” to enable the VPN connection
AP: Select the AP on which the VPN connection to be configured from the dropdown
VPN: Select the VPN protocol “Wireguard”
Tunnel Connection: Select “Always” from the dropdown
Type: Check the “Client” radio button
Private Key: Input the Private Key as for the peer as generated on Wireguard Server.
Address: Enter the corresponding client IP of Private key configured on Wireguard Server
MTU: Optional. In case the network MTU needs to be adjusted, enter the MTU value.
Pass-Through: To send the PIAP management traffic outside the VPN tunnel, please configure the following in the Passthrough:
220.127.116.11/32, 18.104.22.168/32, 22.214.171.124/32, 126.96.36.199/32, 188.8.131.52/32
Public Key: Enter the Wireguard Server public key
PSK: Optional. In case a PSK is configured on the Wireguard Server, enter the PSK value.
Allowed IPs: To allow all outbound IPv4 traffic to enter 0.0.0.0/0. To only take specific network traffic over the VPN, enter the network IP range.
Endpoint IP: IP address of the Wireguard Server.
Endpoint Port: Port fo the Wireguard Server
Click the “Create” or “Update VPN” button to save.