<div dir="ltr"><div dir="ltr"><div class="gmail_default" style="font-size:small">On Thu, Nov 20, 2025 at 9:57\u202fPM Francisco <<a href="mailto:fxdoming@gmail.com">fxdoming@gmail.com</a>> wrote:</div></div><div class="gmail_quote gmail_quote_container"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><u></u>
<div><p>try lowering your mtu to 1,200 from 1,500 to see if it helps</p></div></blockquote><div><br></div><div style="font-size:small" class="gmail_default">Indeed it was an MTU issue.</div><div style="font-size:small" class="gmail_default">It was odd that short responses would get through, but longer ones didn't.</div><div style="font-size:small" class="gmail_default">And it seems that the response was queued somewhere, showing up in netstat, but not being sent.</div><div style="font-size:small" class="gmail_default"><br></div><div style="font-size:small" class="gmail_default">There was no change that I did that caused the problem.</div><div style="font-size:small" class="gmail_default">And there was no MTU defined in Wireguard's configuration at all.</div><div style="font-size:small" class="gmail_default"><br></div><div style="font-size:small" class="gmail_default">But once I added it, the server was accessible via VPN once more.</div><div style="font-size:small" class="gmail_default"><br></div><div style="font-size:small" class="gmail_default"><span style="font-family:monospace">[Interface]<br>Address = <a href="http://10.10.0.4/24">10.10.0.4/24</a><br>MTU = 1380 # This is the fix<br>DNS = 10.10.0.1<br>PostUp = wg set %i private-key /etc/wireguard/%i.key<br><br>[Peer]<br>PublicKey = foo<br>AllowedIPs = <a href="http://10.10.0.0/24">10.10.0.0/24</a><br>Endpoint = x.x.x.x:51820<br>PersistentKeepalive = 15</span></div></div></div>