Multiple Endpoints

Jason A. Donenfeld Jason at
Mon Jan 9 00:00:17 CET 2017

On Sun, Jan 8, 2017 at 11:57 PM, Baptiste Jonglez
<baptiste at> wrote:
> Please read Emmanuel's email more carefuly before being so assertive.
> His use-case was a client behind a stateful firewall, so if the server
> changes its IP address, roaming will not work.

I understand that use-case. And as I said before, most UDP stateful
firewalls allow changing remote IPs, so long as the dport/sport remain
the same.

> I merely pointed out that a stateful firewall is similar to a symmetric
> NAT, that is, both would cause issue with peer roaming.

Are you sure about this for UDP? I did a bunch of tests several months
ago, and was able to punch holes in a variety of stateful firewalls
with changing remote IPs.

More information about the WireGuard mailing list