3

VPN Support

Last Update 5 tháng trước

MOFI 6500 OpenVPN Tutorial What different models are available for sale currently? WireGuard Server Setup Guide - MOFI6500

WireGuard Server Setup Guide - MOFI6500

Learn how to set up the WireGuard Server on the MOFI6500 Router

MoFi Support

Last Update 10 tháng trước

This guide explains how to set up the built-in WireGuard VPN server on your MOFI6500 router. WireGuard allows secure and fast VPN connections for remote access to your network.


Step-by-Step Setup
1. Enable the WireGuard Server

  • Go to VPN Services > WireGuard > WireGuard Server

  • Check the box: Enable WireGuard Server

2. Configure Server Settings Endpoint Address

  • This is the IP or domain the clients will connect to.

    • For local testing, use an IP address assigned to the router that is reachable from the client device.
      – If the client is connected to the LAN side of this router, use its LAN address (e.g. 192.168.10.1).
      – If the client is on the same upstream/home network, use the router's WAN address assigned by the main router (e.g. 192.168.50.2).

    • For remote access: use your public IP or a Dynamic DNS (DDNS) name (e.g. vpn.example.com)

Listen Port

  • Default: 6677

  • This must be forwarded if behind another NAT router or ISP gateway.

IP Addresses

  • Default: 10.110.0.1

  • This is the VPN subnet. It must be different from your LAN or other VPNs.

  • Clients will automatically get .2, .3, etc.

MTU

  • Default: 1400

  • Leave it unless you know you need a specific value.


NOTE: Only After filling in the Endpoint address, Listen Port, and Tunnel IP Address, and enabling the WireGuard server, make sure to click Save. This will activate the server and automatically generate the first peer configuration file. If you need additional peers (for more client devices), use the “Create New Peer” button, which will appear only after the server has been properly configured and saved.


3. Generate a Peer (Client) Configuration (Optional)

  • After doing the above underlined step, scroll down and if you want to generate extra peers click:

    • Create New Peer

  • This will generate a new peer config (client keypair and settings)

  • Then click:

    • Download ALL peers
      → You’ll get a .tar.gz file containing each peer’s .conf file

These .conf files can be imported into any WireGuard-compatible client (e.g., Windows, Android, iOS, Mac, etc.)

⚠️Alternatively, you can copy and paste each peer conf from the peer configuration status section.

 

4. Port Forwarding (For Remote Access)(Optional)

If your MOFI6500 is behind another router (double NAT), you'll need to:

  • Forward the WireGuard Listen Port (UDP) from your upstream router to the MOFI6500

  • Ensure your public IP or DDNS hostname is accessible from the internet

5. Firewall & Routing (Optional)

  • The router auto-configures firewall and forwarding rules to allow VPN traffic to LAN and WAN

  • NAT masquerading is also enabled for clients to access the internet through VPN

6. Managing Peers (Optional)

  • Click Create New Peer to add more clients

  • Click Download ALL peers again to get an updated archive of all peer configs

  • Click Delete ALL peers to flush all peer entries (recommended if you change endpoint, IP scheme, or other core settings)

Notes

  • Always save a copy of the .tar.gz archive for backup before deleting peers.

  • After changing the Endpoint Address, make sure to delete old peers and generate new ones.

  • VPN clients must use the updated .conf that matches the new server settings.

Was this article helpful?

1 out of 1 liked this article