HI, I have a at&t internet with a BGW-320 router and a UDR7 ubiquiti router I connected the at&t router as a passthrough to use wire guard or hub and spoke but neither of two ways work, on wire guard I can have connection to the server from the client but I cannot have internet from my local network, and from the hub and spoke I can’t see the hub. the only way is working is like a mesh, but I think is too slow. Any clue of how to fix wire guard or hub and spoke?
Thank you,
Jorge
The WireGuard issue where you can connect but have no internet from the local network is a routing problem on the UDR7. When the WireGuard tunnel comes up, traffic from your LAN devices still routes out through the normal WAN path instead of through the tunnel.
In the UniFi Network settings under VPN > VPN Client, check that the WireGuard client has AllowedIPs set to 0.0.0.0/0 if you want all traffic to go through the tunnel. If it is set to only the remote subnet, your local devices will only reach the remote network but not the internet through it.
For the AT&T BGW-320 passthrough, make sure you are using IP Passthrough mode (not DMZ or bridge) and that it is set to the UDR7 MAC address. The BGW-320 passthrough assigns the public IP directly to the UDR7 WAN interface. You can verify this by checking the UDR7 WAN settings and confirming it shows the AT&T public IP, not a 192.168.1.x address. If it shows a private IP then passthrough is not working correctly and you need to reconfigure it in the BGW-320 settings under Firewall > IP Passthrough.