Bug #16611
open
WireGuard MultiWAN Not Failing Back to Tier 1
0%
Description
When using a GW group for WAN failover, WireGuard will fail to Tier2 when the Tier1 GW is down. However, when Tier1 is restore, WireGuard does not revert back to Tier1.
re-opening issue 11630. This issue still occurs in 25.11.
Updated by Kris Phillips about 1 month ago
Hello Steven,
Do you have state killing on lower priority gateways selected under System --> Advanced --> Misc?
Updated by steven warner about 1 month ago
Hi Kris - Yes that setting is set as you asked. The Wireguard tunnel stays firmly gripped on the lower tier gateway when the higher priority tier restores, while other traffic correctly migrates.
Updated by Chris Palmer 28 days ago
I also see this behavior at my location here.
Updated by steven warner 17 days ago
I can add linbks to other reports from reddit etc... I believe this really happens. Big problem when your backup WAN is on a metered link...
Updated by Azamat Khakimyanov 1 day ago
Tested on 25.11.1-RELEASE
I was able to reproduce this issue and as a workaround I added Floating Firewall rule:
Interfaces: Any Direction: Out Protocol: UDP Destination: <WireGuard Server IP> Destination Port: <WireGuard Port> (for example, 51820) Gateway: <Failover Gateway group>
and in System->Advanced-> Miscellaneous I chose 'State Killing on Gateway Recovery: Kill all states for lower-priority gateways'.
After I added these settings, whenever WAN1 went down, WireGuard started using WAN2. When WAN1 came back up, WireGuard successfully switched back to WAN1.