WireGuard not working as expected

Pioneer Support
1

Hi folks,

I recently set up the WireGuard app on my FreedomBox and on my phone (F-Droid version), but it isn’t working as expected. I was hoping to be able to access local resources on my network from an external network, and also to be able to be served internet traffic as if on my home network.

What is happening is when I am connected to the VPN, I can connect to sites hosted on the FreedomBox (plinth or Cockpit, any of the apps it serves, et cetera), but I cannot access the webpage for my router or my Pi-hole or connect to any network resources. No external websites load at all, they time out.

The F-Droid app offers an application log, which is full of errors but mostly “failed to connect to jdwp control socket: Connection refused”:

--------- beginning of events
06-07 17:49:24.056 11093 11093 I wm_on_create_called: [222210627,com.wireguard.android.activity.MainActivity,performCreate]
06-07 17:49:24.067 11093 11093 I wm_on_start_called: [222210627,com.wireguard.android.activity.MainActivity,handleStartActivity]
06-07 17:49:24.069 11093 11093 I wm_on_resume_called: [222210627,com.wireguard.android.activity.MainActivity,RESUME_ACTIVITY]
06-07 17:49:24.075 11093 11093 I wm_on_top_resumed_gained_called: [222210627,com.wireguard.android.activity.MainActivity,topStateChangedWhenResumed]
06-07 17:49:24.259 11093 11093 I auditd  : type=1400 audit(0.0:1049): avc: denied { read } for comm="DefaultDispatch" name="somaxconn" dev="proc" ino=3111667 scontext=u:r:untrusted_app:s0:c186,c256,c512,c768 tcontext=u:object_r:proc_net:s0 tclass=file permissive=0 app=com.wireguard.android
06-07 17:49:27.830 11093 11093 I wm_on_top_resumed_lost_called: [222210627,com.wireguard.android.activity.MainActivity,topStateChangedWhenResumed]
06-07 17:49:27.838 11093 11093 I wm_on_paused_called: [222210627,com.wireguard.android.activity.MainActivity,performPause]
06-07 17:49:28.539 11093 11093 I wm_on_stop_called: [222210627,com.wireguard.android.activity.MainActivity,STOP_ACTIVITY_ITEM]
--------- beginning of main
06-07 17:50:10.059 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:12.060 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:14.064 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:16.066 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:18.071 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:20.075 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:22.079 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:24.083 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:26.087 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:28.089 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:30.090 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:32.092 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:34.094 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:36.096 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:38.099 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:40.102 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:42.104 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:44.106 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:46.110 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:48.112 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:50.116 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:52.119 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:54.123 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:56.127 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:50:57.765 11093 11152 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending keepalive packet
06-07 17:50:58.131 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:00.134 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:02.136 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:04.138 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:06.140 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:08.143 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:10.145 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:12.148 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:14.152 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:16.154 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:18.157 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:20.159 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:22.163 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:24.165 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:26.168 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:28.172 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:29.876 11093 11149 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending keepalive packet
06-07 17:51:29.877 11093 11149 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending handshake initiation
06-07 17:51:29.925 11093 11627 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Received handshake response
06-07 17:51:29.926 11093 11627 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending keepalive packet
06-07 17:51:30.175 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:32.183 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:34.188 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:51:49.701 11093 11149 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending keepalive packet
06-07 17:51:49.702 11093 11149 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Received handshake initiation
06-07 17:51:49.702 11093 11149 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending handshake response
06-07 17:51:49.729 11093 11627 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Receiving keepalive packet
06-07 17:52:16.733 11093 11627 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Receiving keepalive packet
06-07 17:52:22.175 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:42.025 11093 11627 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Receiving keepalive packet
06-07 17:52:44.845 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:46.845 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:48.847 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:49.565 11093 11093 I wm_on_restart_called: [222210627,com.wireguard.android.activity.MainActivity,performRestartActivity]
06-07 17:52:49.566 11093 11093 I wm_on_start_called: [222210627,com.wireguard.android.activity.MainActivity,handleStartActivity]
06-07 17:52:49.566 11093 11093 I wm_on_resume_called: [222210627,com.wireguard.android.activity.MainActivity,RESUME_ACTIVITY]
06-07 17:52:49.566 11093 11093 I wm_on_top_resumed_gained_called: [222210627,com.wireguard.android.activity.MainActivity,topWhenResuming]
06-07 17:52:50.418 11093 11093 I menu_item_selected: [0,Settings]
06-07 17:52:50.436 11093 11093 I wm_on_top_resumed_lost_called: [222210627,com.wireguard.android.activity.MainActivity,topStateChangedWhenResumed]
06-07 17:52:50.436 11093 11093 I wm_on_paused_called: [222210627,com.wireguard.android.activity.MainActivity,performPause]
06-07 17:52:50.451 11093 11093 I wm_on_create_called: [241812156,com.wireguard.android.activity.SettingsActivity,performCreate]
06-07 17:52:50.476 11093 11093 I wm_on_start_called: [241812156,com.wireguard.android.activity.SettingsActivity,handleStartActivity]
06-07 17:52:50.476 11093 11093 I wm_on_resume_called: [241812156,com.wireguard.android.activity.SettingsActivity,RESUME_ACTIVITY]
06-07 17:52:50.482 11093 11093 I wm_on_top_resumed_gained_called: [241812156,com.wireguard.android.activity.SettingsActivity,topStateChangedWhenResumed]
06-07 17:52:50.848 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:50.952 11093 11093 I wm_on_stop_called: [222210627,com.wireguard.android.activity.MainActivity,STOP_ACTIVITY_ITEM]
06-07 17:52:52.846 11093 11093 I wm_on_top_resumed_lost_called: [241812156,com.wireguard.android.activity.SettingsActivity,topStateChangedWhenResumed]
06-07 17:52:52.846 11093 11093 I wm_on_paused_called: [241812156,com.wireguard.android.activity.SettingsActivity,performPause]
06-07 17:52:52.849 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:52.868 11093 11093 I wm_on_create_called: [41743342,com.wireguard.android.activity.LogViewerActivity,performCreate]
06-07 17:52:52.869 11093 11093 I wm_on_start_called: [41743342,com.wireguard.android.activity.LogViewerActivity,handleStartActivity]
06-07 17:52:52.869 11093 11093 I wm_on_resume_called: [41743342,com.wireguard.android.activity.LogViewerActivity,RESUME_ACTIVITY]
06-07 17:52:52.876 11093 11093 I wm_on_top_resumed_gained_called: [41743342,com.wireguard.android.activity.LogViewerActivity,topStateChangedWhenResumed]
06-07 17:52:53.331 11093 11093 I wm_on_stop_called: [241812156,com.wireguard.android.activity.SettingsActivity,STOP_ACTIVITY_ITEM]
06-07 17:52:54.851 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:56.854 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:52:58.438 11093 11149 D WireGuard/GoBackend/XZ2: peer(cdvx…7FHQ) - Sending keepalive packet
06-07 17:52:58.856 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:00.860 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:02.864 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:04.868 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:06.870 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:08.873 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:10.878 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:12.883 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:14.886 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:16.889 11093 11105 E reguard.androi: failed to connect to jdwp control socket: Connection refused
06-07 17:53:18.349 11093 11093 I menu_item_selected: [0,Export log file]

I have double-checked the information on this page:

wireguard
wireguard854×898 103 KB

The keys match up, as well as the IP address. It does register a successful handshake is happening and some data is transferred, although that timestamp is off by three hours (I have checked that the time is correctly configured in settings and also in Cockpit, so I’m not sure where that timestamp comes from). I’m not sure if the time mismatch is significant or not.

I did not choose that IP address 10.84.0.2 and I don’t see any way to change it. I was able to set it up with that IP on the Android device, but I thought it was odd that I can’t access or change it. I found the documentation here which suggests this comes from a config file at /etc/wireguard/wg0.conf, but my /etc/wireguard/ directory is completely empty–not a single file. I ran a search trying to find where the WireGuard configs are kept, but couldn’t find anything.

Any ideas what I am missing?

Information
Debian 11 - Bullseye
FreedomBox 22.12

Configuration
Behind a router in the DMZ

Hardware
Olimex A20-OLinuXino-LIME2 board

2

Hi and sorry for having to wait so long for a reply. WireGuard indeed seems to be broken.

I did not choose that IP address 10.84.0.2 and I don’t see any way to change it. I was able to set it up with that IP on the Android device, but I thought it was odd that I can’t access or change it.

10.84.0.2 is a private IP, inaccessible from the Internet.

I found the documentation here which suggests this comes from a config file at /etc/wireguard/wg0.conf, but my /etc/wireguard/ directory is completely empty–not a single file. I ran a search trying to find where the WireGuard configs are kept, but couldn’t find anything.

The settings are stored in /etc/NetworkManager/system-connections/WireGuard-Server-wg0.nmconnection. The core devs might have some ideas what to do with the issue.

3

That’s no problem, thank you for the reply!

I take this to mean there is a known bug, or similar? I had been thinking my configuration was faulty and that was why it wasn’t working, so it is kind of reassuring in a way to hear that. Hopefully it will be fixed soon–is there anything I can do to help?

I realize it is a private IP address, it just seemed odd that such a seemingly random number was assigned (like why not use the 10.0.0.1/24 subnet and give the peer 10.0.0.2? Easier to remember!). The fact that I could not figure out how to change it made it all the more mysterious. Now that you’ve pointed out where the config is stored I see it should be a simple matter to change any of the IPs if needed.

Thanks again for the reply, and for pointing out where the config file lives. :slightly_smiling_face:

4

Wireguard is defintely broken, I have the same issue. Can someone in development please look into this or provide how to set it up properly.

1 Like