From 0ddd068ff565dbc52f422784214cff11a1049f56 Mon Sep 17 00:00:00 2001
From: Kevin Veen-Birkenbach <kevin@veen.world>
Date: Sun, 16 Apr 2023 08:26:13 +0200
Subject: [PATCH] Added wireguard debug links to doku

---
 roles/application-wireguard/README.md | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/roles/application-wireguard/README.md b/roles/application-wireguard/README.md
index 5c3be34a..8a4757ae 100644
--- a/roles/application-wireguard/README.md
+++ b/roles/application-wireguard/README.md
@@ -12,6 +12,22 @@ Manages wireguard on a client.
 
 ## Debug 
 
+### RTNETLINK answers: Permission denied
+When ```systemctl restart wg-quick@wg0.service``` returns __RTNETLINK answers: Permission denied__, modify _/etc/sysctl.conf_:
+
+```bash
+net.ipv6.conf.all.disable_ipv6 = 0
+net.ipv6.conf.default.disable_ipv6 = 0
+net.ipv6.conf.lo.disable_ipv6 = 0
+```
+
+Afterwards reload: 
+```bash
+sysctl -p
+systemctl restart wg-quick@wg0.service
+```
+
+
 ### SSH
 
 When the SSH connection over wireguard is buggy try: 
@@ -21,7 +37,7 @@ ip li set mtu 1400 dev eth0
 ip li set mtu 1400 dev wlo1
 ```
 
-This can be connected to the [MTU](https://www.imperva.com/learn/application-security/what-is-mtu-mss/) 
+This can be connected to the [MTU](https://www.imperva.com/learn/application-security/what-is-mtu-mss/)
 
 ## Other
 - https://golb.hplar.ch/2019/01/expose-server-vpn.html