Roon works perfectly without issue over a VPN tunnel in the following configurations:
Wireguard running on laptop (Mac OSX) on a remote WiFi network.
Wireguard running on an iPhone (iOS) on a remote WiFi network.
Wireguard running on laptop (Mac OSX) tethered (via iOS WiFi hotspot) to an iPhone using my cellular network (with WiFi disconnected).
(this last scenario is interesting as it seems to indicate that my cellular network isnāt blocking the Wireguard tunnel)
But Roon remote fails to connect to my Core when using a Wireguard tunnel directly on iPhone (iOS) over cellular (Three).
However I can connect to my ROCKās web interface in the above configuration (Wireguard on iOS). Which suggests that Wireguard is (at least at a basic level) running correctly on my iPhone and allowing me to reach my ROCK server and connect to it on port 80.
I can also run Roon remote without issue and connect to my remote Core when my laptop is tethered to this iPhone via iOSā WiFi hotspot feature (see above) - this seems to indicate that the Wireguard tunnel isnāt being blocked by my cellular provider.
What I canāt do is connect to my Roon Core from a Roon Remote (on my iPhone, while on cellular) even if I manually enter itās IP address in Roon Remote. This seems odd as I thought this bypasses Roonās discovery mechanism.
This suggests an issue with how the local network (or Wireguard tunnel) is presented to Roon on iOS that differs from how it is presented when using either i) a laptop (OSX) running Wireguard which is tethered to an iPhone on a cellular network, or i) simply an iPhone running Wireguard on a WiFi connection.
Iāve tried countless combinations of settings, which for brevity I have excluded here. Including adding IPV6 routes to Wireguard (although still wondering if this is the root issue) and disabling any private network features on iOS.
Obviously there is a chance I have overlooked something there, in fact I almost certainly have given my post, but (without wishing to sound ungrateful) Iām really looking for responses from users who have hit a similar issue themselves (and hence know of a concrete fix) or users with a better understanding of running Roon / Wireguard on iOS over a cellular network than me, who can give concrete suggestions. But I appreciate any help or suggestions anyone can give.
Roon app wonāt work on iOS or Android without WiFi connection period itās part of their code. It just wonāt launch properly when the device itās running on is on cellular. You have to connect to another device thats running WiFi tethering that has cellular. I had to do this with my DAP when I meddled with all this.
Thatās not true. Iāve been able to get it to work on a cellular connection with WireGuard before. Iāve now given up on that as it was just for fun.
My experience tells me otherwise unless they changed the behaviour. On Android the app would not start saying no wireless connection and would not go any further when connected to my VPN.
It all depends on what type of VPN you used and how you set it up. If, for example, the mobile is assigned an IP address via VPN in a different subnet, which is typically the case, it will not work without some additional configuration.
Thanks for the clarifications, unless itās old, Julesā screenshot suggests that Roon Remote will connect over cellular with WiFi disabled.
In my case, while my mobile is assigned an IP address via VPN thatās from a different subnet to my Roon Core. I believe I am already running the additional configuration Bart mentions, namely udp-2020, as everything works perfectly if connecting over a VPN tunnel via WiFi or when connecting to a mobile on cellular via tethering (see my original post).
In think in my case it suggests there be some interaction with how Wireguard works over cellular connection on iOS. Unless Bart your thinking of done other āadditional configurationā.
That was indeed the āadditional configurationā I was referring too. Perhaps check the softwareās options to enable some debugging in order to find out what is happening. @Aaron_Turner might be able to help you figure out whatās going wrong from the debug logs.
VPN is in my router and used Androids VPN client It worked when device was connected via WiFi I ended up using my phone as a wifi hotspot and my dap connected to this and used VPN to connect. Roon on the same phone would not run using VPN. I Canāt try it any more as Andorid 12 uses different VPN connectivity now that I canāt use.
I use Roon on my iPhone over Wireguard over both Wifi and 5G thanks to udp-proxy-2020 running on my pfSense box using the same Wireguard configuration/tunnel.
I assume when you are testing Wireguard + Wifi you are doing so away from home or where your Roon core is? If youāre testing while at home with wifi then youāre not going to be using the VPN tunnel for Roon.
Yes, using Wireguard + WiFi when away from home on a totally unrelated WiFi network and everything works perfectly. btw. thanks for developing udp-proxy-2020!
The problem only occurs when using Wireguard on a cellular network on iOS. I can still see my ROCKās web interface on port 80 in that scenario, which suggest the Wireguard tunnel is being created (at least partially successfully) on a cellular connection. I just canāt get the Roon Remote to connect, even if I enter my Coreās IP address manually.
Yeah, cellular/5G should be fine assuming your VPN is configured correctly. Youāre using the same VPN settings?
Iām very confused by your last sentence though āI just canāt get the Roon Remote to connect, even if I enter my Coreās IP address manually.ā Where are you entering the Coreās IP address? I have never seen this option in the Roon Client on iOS or MacOS.
Yes, exactly the same, as soon as I connect back onto a (remote / not my home) WiFi network it works just fine.
The fact that it works with WiFi but not cellular with the same VPN settings would seem to suggest that the Wireguard configuration is correct. Also the fact that I can connect to my ROCKās web interface using Wireguard over a cellular network suggests the VPN tunnel is correctly instantiated and it isnāt being blocked.
All I can think is that there is some sort of split tunnelling or IPV6 networking that is being enabled on iOS when using my cellular network (Three) that isnāt happening with WiFi. But Iām as a loss to what that could be.
Ah, I meant this screen, if you click āhelpā (circled in red) you can enter an IP address manually.
Under Settings ā Cellular, do you have Roon enabled for using cellular data?
Beyond that, you can open a ticket on github and I can walk you through collecting pcaps and we can take a closer look, but it definitely sounds like Roon isnāt sending traffic on the VPN when using cellar. Based on what youāve said, most likely itās a setting on your phone. Or some weird bug in Roon or something that makes it not work for you.
sorry about that!