Hi all. I am trying to configure the official WireGuard client on Windows such that all traffic leaving my LAN is tunneled while still being able to access local resources.
On Linux, this can be done by including some iptables rules in the WireGuard config file. On Windows however I have been unable to find a way to do this that is not leaky.
Does anyone on this forum have experience with this? I am open to using another FOSS WireGuard client if it can’t be done in the official client.
As I understand it, if you use the Wireguard client on Windows, what you want can’t be done. It’s not an option.
Also, I think it’s best to always use the official Wireguard client. I don’t know of another one either.
Try this maybe it works, it uses wiresock which is wireguard on steroids, i been using it for a long time tho idk if it has exactly what u want, only one way to know
It is not open source anymore but it used to be open source until version 1.0.7 (scroll to the botom here Releases · TunnlTo/desktop-app · GitHub)
the author then decided to commercialize this software and made it closed sourced, but u can still download the last open source version from the releases page, altho wiresock itself is not open source so not much point about worrying if the frontend is open source or not
After having researched this issue for many hours now, I am also leaning towards it not being possible. I have even tried editing the routes with PostUp scripts (similar to how it is done on Linux) without success. It would be nice to use the official client but at least on Windows, using anything other than AllowedIPs = 0.0.0.0/0, ::/0 is leaky.
I have tried it in a VM and it seems to do exactly what I need. It also passes my leak test where the official WireGuard client failed. Thank you for suggesting it.
If I don’t find a FOSS option with similar functionally I will switch to this.