Security zone and WireGuard

Hi all…

I am adding wireguard to my linux (KDE):

$ CONF_FILE="wg0.conf"
$ nmcli connection import type wireguard file "$CONF_FILE"

And it works right away.
My Ethernet Connection is located in some firewall zone. But WireGuard VPN has no firewall zone. Please tell me, should I assign a firewall zone to WireGuard VPN, or can I leave this field blank in the settings?

Please advise me the best solution.

You are posting to openSUSE forums. Are you using openSUSE at all? If yes, why you marked you post as “OTHER VERSION”? What other version is it?

But WireGuard VPN has no firewall zone.

If “WireGuard VPN” means “WireGuard interface” - every interface is always assigned to some zone. If no explicit zone is defined, default zone is used which by default is “public”. Show full output of the following commands when WireGuard connection is active:

nmcli connection show | cat
firewall-cmd --list-all-zones

If “WireGuard VPN” means something different - explain what you mean.

should I assign a firewall zone to WireGuard VPN, or can I leave this field blank in the settings?

We cannot tell yo what you should do - it is up to you to decide, only you know what you need and want to achieve.

Did I violate forum rules by using its drop-down menu? That was a question for the OpenSUSE forum programmers.
Could you please change the tone of communication? You’re not at home chatting, you’re talking to a stranger on the Internet.

Nevertheless, you failed to communicate what version of openSUSE you use. We specaiy created that prefix menu to

  • force people that would otherwise forget to provide this most crucial bit of information;
  • when people do not use any of the supported versions of openSUSE and thus fall back to OTHER VERSION we hope that that makes them think something like: Oh yes, let me tell that as first in my text.

Now we are aboutt about 15 hours further and still haven’t it. Not an efficient way to discuss a technical problem.