Linux-Servers.md: Wireguard problem hinzugefügt; Neu: Steuererklärungen.md

This commit is contained in:
tlg
2026-03-21 22:10:19 +01:00
parent 52ea2b6528
commit 95f16edeef
2 changed files with 174 additions and 0 deletions

View File

@@ -304,3 +304,101 @@ Questions about <VirtualHost ...:443> section:
---
# Wireguard problem
Please help troubleshooting and repairing a Wireguard connection.
## Setup
WireGuard IP-Addresses:
10.8.0.1 DesTEngSsv005
10.8.0.6 DesTEngSsv006
10.8.0.3 DesTEngSnb003
### DesTEngSsv005
DesTEngSsv005 is a datacenter Linux server
with public IP-address 65.108.193.31 .
In the Wireguard setup the server is the bridge between an office server
and a notebook.
I am the system administrator and have root access.
### DesTEngSsv006
DesTEngSsv006 is an office Linux server with a dynamic IP-address for
Internet access.
### DesTEngSnb003
DesTEngSnb003 is my personal Windows notebook with a dynamic IP-address for
Internet access.
## Symptoms
Today I noticed that from DesTEngSnb003 the Wireguard connection to
DesTEngSsv006 is not working anymore: The connection could not be established.
I can ping DesTEngSsv005 from DesTEngSnb003.
The latest handshake with 10.8.0.6 happened 21 hours ago:
```
root@sv005 ~ # wg show
interface: wg0
public key: Fww9ON7EvuRom7M9BN97bRpxduIM4V54z/Ij6eunrgo=
private key: (hidden)
listening port: 51820
peer: YUOO8IHL218cmeaS1c/VH9STQRGryrlWk0oXvtCbqFY=
endpoint: 87.152.118.183:49669
allowed ips: 10.8.0.3/32
latest handshake: 4 seconds ago
transfer: 21.22 MiB received, 633.64 MiB sent
peer: XTC0cB4R3hurXh9NTIhPfDlam3ahrau21F/ezJUJSRs=
endpoint: 89.244.105.89:49166
allowed ips: 10.8.0.6/32
latest handshake: 21 hours, 32 minutes, 20 seconds ago
transfer: 1.13 GiB received, 115.96 MiB sent
```
The Wireguard connection was working well before, I am the only admin of
all three machines and I have not intentionally changed any firewall
settings or FORWARD chains.
```traceroute 10.8.0.6``` does not work on my notebook in a CMD window;
likely because the notebook has Windows and not Linux.
On the weekend I'm not in the office; therefore, I cannot check anything
on DesTEngSsv006 now. Are there any helpful and promising checks I could
do right now with my access limited to DesTEngSsv005 and DesTEngSnb003?
The notebook can reach the hub:
```
C:\Users\tlg>tracert -d 10.8.0.6
Routenverfolgung zu 10.8.0.6 über maximal 30 Hops
1 50 ms 49 ms 49 ms 10.8.0.1
2 * * * Zeitüberschreitung der Anforderung.
3 * * * Zeitüberschreitung der Anforderung.
4 * * * Zeitüberschreitung der Anforderung.
5 * ^C
```
I started this:
```
root@sv005 ~ # ping 89.244.105.89
PING 89.244.105.89 (89.244.105.89) 56(84) bytes of data.
```
For more than one minute no answer arrived.
So likely the office Internet connection is down.
Thank you, I will proceed troubleshooting on Monday in the office.