[WireGuard] WireGuard cryptokey routing

Norman Shulman norman.shulman at n-dimension.com
Thu Jul 14 23:16:19 CEST 2016


Hi Jason,

Sorry if this sounds too theoretical. I'm just trying to understand the
cryptokey routing well enough to determine if it's suitable for our use.
The main problem I have is understanding how you can base routing on
non-routable addresses, which are not unique.

Thanks.

Norm


On Thu, Jul 7, 2016 at 12:18 PM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:

> On Thu, Jul 7, 2016 at 6:15 PM, Norman Shulman
> <norman.shulman at n-dimension.com> wrote:
> > Look at it from the server side. There are millions of clients on
> millions
> > of 192.168.1.0/24 networks, yet a server can communicate with no more
> than
> > 254 of them.
>
> Voila, this is where you are most certainly mistaken.
>
> While a client might have 192.168.1.8 as their IP address for eth0,
> their IP address for wg0 can be something completely different. Want a
> million clients? Use a /20 as your wireguard device inner IP.
>
> Anyway, why don't you tell us all what you actually want to do, rather
> than these meandering theoretical questions? Then maybe we can help
> you effectively.
>



-- 
Norman Shulman
Sr. Developer/Architect
N-Dimension Solutions Inc.
9030 Leslie St, Unit 300
Richmond Hill, ON L4B 1G2
Canada

Tel: 905 707-8884 x 226
Fax: 905 707-0886

This email and any files transmitted with it are solely intended for the
use of the named recipient(s) and may contain information that is
privileged and confidential. If you receive this email in error, please
immediately notify the sender and delete this message in all its forms.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/wireguard/attachments/20160714/774d6cdb/attachment.html>


More information about the WireGuard mailing list