Cannot route external traffic (helm)

[nox-404]

Hello,
I can't get any traffic aside from the peer to the server to work
Any idea ?

My goal is to get the peers to connect to the node's network and also route all traffic through that node (DNS included)

Here are my helm values:

# wg-access-server config
config:
  externalHost: host
  storage: mysql://user:[email protected]:3306/database?parseTime=true
  vpn:
    cidr: x.x.x.0/24
    allowedIPs:
      - 0.0.0.0/0
      - ::/0
  dns:
    upstream:
      - resolveconf

web:
  config:
    adminUsername: admin
    adminPassword: password

  service:
    type: ClusterIP

wireguard:
  config:
    privateKey: private-key
  service:
    type: NodePort

persistence:
  enabled: false

ingress:
  enabled: true
  hosts:
  - host
  tls:
    - secretName: host-tls
      hosts:
        - host

nameOverride: wireguard
fullnameOverride: wireguard

Just one note though, I'm using an image with the following fix #135 as I'm using a mariadb storage

[sarce666]

hello i have extacly the same pb
did you solve it ?

[JHdeVilliers]

I needed to modify the deployment securityContext:

diff --git a/deploy/helm/wg-access-server/templates/deployment.yaml b/deploy/helm/wg-access-server/templates/deployment.yaml
index 03620b8..4c37d2e 100644
--- a/deploy/helm/wg-access-server/templates/deployment.yaml
+++ b/deploy/helm/wg-access-server/templates/deployment.yaml
@@ -27,6 +32,10 @@ spec:
       imagePullSecrets:
         {{- toYaml . | nindent 8 }}
     {{- end }}
+      securityContext:
+        sysctls:
+          - name: net.ipv4.ip_forward
+            value: "1"
       containers:
         - name: {{ .Chart.Name }}
           securityContext: