▲ 5 r/mikrotik
EoIP over Wireguard: GRE input rule left open to WAN for a year
For the past year, I have been running an EoIP tunnel over a Wireguard Site-to-Site (S2S) VPN to extend one of my VLANs to my parents' house. Both devices are MikroTik routers. The EoIP tunnel was configured using local and remote addresses within the Wireguard /30 subnet.
The issue is that when I created the input firewall rule to allow GRE traffic, I forgot to specify the Wireguard interface in the in-interface field. This means I have left that rule wide open to the entire internet for a year. Should I be worried about my network security? Thanks
u/Adrux21 — 4 days ago