I have three IX20s and I am trying to reach out via a single initiator via two new wireguard clients. to the other 2 IX20s configured as servers.
The first client works without issue. When I enable the second, both stop working and I get the following error message:
invalid key 'type' for path 'vpn.wireguard.001MYVPN.type'
The second is using different IP ranges all around, and I incremented the port number for both the endpoint and the tunnel on the second wireguard connection just to ensure there’s no conflict. I also generated my own key on the second in the event there’s something internally conflicting related to having the IX20 generate both keys.
Any ideas what’s causing this? Is it an internal key or something I have access to so I can troubleshoot further?
I’m seeing this on the common initiator which is initiating the connection to both of the two wireguard endpoints. It’s within the system logs on the initiating device.
You need to setup one tunnel configuration for every single peer you use. If you have three devices total and two of them build the connection to a central one, then the central one needs one configuration for each.
The private key setting is also not generally used, so check if you enabled that by mistake and then either make sure the passwords match on both sides, or just disable it.
If this doesn’t help, create a support case by emailing tech.support@digi.com and include fresh support reports from each IX20.