<div dir="ltr"><div><div><div><div>hello, <br></div>sorry for my english.<br></div>This question(udp tunnel ..) is not relevant, I learn a lot with the read of mailing list.<br></div>Regards, <br></div>Nicolas<br></div><div class="gmail_extra"><br><div class="gmail_quote">2017-02-17 14:48 GMT+01:00 Jason A. Donenfeld <span dir="ltr"><<a href="mailto:Jason@zx2c4.com" target="_blank">Jason@zx2c4.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class="">On Wed, Feb 15, 2017 at 11:12 AM, Nicolas Prochazka<br>
<<a href="mailto:nicolas.prochazka@gmail.com">nicolas.prochazka@gmail.com</a>> wrote:<br>
> - how many tunnels a peer can manage ?<br>
> In our environnement, ~ 10 000 clients --> "server"|peer<br>
<br>
</span>Each interface can have 65536 peers. Each linux system can have<br>
multiple interfaces.<br>
<br>
(If that peer limit becomes a problem for somebody, it wouldn't be<br>
difficult to remove it and expand it to 4294967296.)<br>
<span class=""><br>
> how wireguard manage this ( udp tunnel from kernel ? )<br>
<br>
</span>Not sure I understand your question. Could you rephrase?<br>
<span class=""><br>
><br>
> - about peer key management ?<br>
> with 10 000 peer keys, how can we manage it<br>
<br>
</span>You can load the keys into the interface using wg(8). At some later<br>
date there may be support for dynamic database stuff.<br>
</blockquote></div><br></div>