#How to make Wireguard peer devices visible to HA

Hi, I made a thread over at ESPHome (https://discord.com/channels/429907082951524364/1196151108486320259) about how to add a remote device to HA. I wasn't able to ping the ESP32 from my local network, but it connected successfully to my home network. I used a phone (with which i tested the same wg config) to test if i can see the local HA server. The answer to that is: yes. The problem is that i can't add the device to HA. I use the following config: `server:
host: ******.com
addresses:
- 192.168.6.1
dns: []
peers:

• name: esp32
  addresses:
  • 192.168.6.2
    allowed_ips: []
    client_allowed_ips: []
    log_level: info`

PS: I'm running HAOS inside a VM, and the HA server is in the 192.168.0.0/24 class

Nobody knows how to solve this issue?

I don't think what you want can be done.

I've been following the struggle with Tailscale and making Home Assistant recognize tailscale-connected subnets, and it took developers quite a while to get it sorted.

If possible I would recommend you to set up Tailscale at your HA, get a cheap Raspberry Pi Zero or similar at whatever remote location you have your ESP32 in, install Tailscale there as well and configure those two instances to talk with each other.

I searched for it extensively and found nothing particularly interesting...only this comment (https://github.com/hassio-addons/addon-wireguard/issues/209#issuecomment-1316647431). It needs static routes to be able to work with the addon. The easier way to do this is to host your WG server inside your router.

But since i don't have a main router with a firmware that supports running the wg server, i'm stuck with the HA wg server addon.

I can't deploy anything on the remote site, only this ESP32.

https://www.reddit.com/r/Esphome/comments/16ypvyn/wireguard_for_the_win/

Yes you are right, if you would configure Wireguard on your might be able to do what you want. Which is essentially a site-to-site VPN.

But again, I don't think you can configure this with the HA wg server addon and I don't think it is in the plans for the WG addon either.

Maybe the solution is to deploy my OPNsense router as a main router.

Possibly, I don't have experience of OPNsense. And personally I switched a while ago to Tailscale as all the devices I need access to work with Tailscale (no remote ESP32 for me), and things like this are much easier to setup there than with "pure" Wireguard.

The problem is that HAOS runs everything in dockers and i can't see the wg interface that it generates (ip addr never mentions the interface).

Indeed

I know this is not the answer you want to hear, but as a reference if you look at this add-on there's multiple settings around just this.

https://github.com/hassio-addons/addon-tailscale/blob/main/tailscale/DOCS.md#configuration

For anybody that is searching for the solution, thanks to Ssieb over at ESPHome, we made it work. (https://discord.com/channels/429907082951524364/1196151108486320259)

Interesting, thanks for the link! Good to know it is indeed possible.