snapshot 0.0.20170628 broken?

Reuben Martin reuben.m.work at gmail.com
Thu Jun 29 19:23:47 CEST 2017


On Thursday, June 29, 2017 11:39:33 AM CDT Jason A. Donenfeld wrote:
> Hey Reuben,
> 
> I'm unable to reproduce these results. How sure are you about this
> situation? Have you tried to reproduce more than once? What are you
> using to configure the peers?
> 
> Jason

Yes, I can consistantly reproduce when I move all 3 computers to the newer
snapshot. This is Gentoo system using (gasp) systemd. I configure the peers
using the wg-quick at wg0 service unit. I use a post-up and pre-down in the
config to setup a vxlan overlayed on top of the VPN connections, but I don’t
think that should matter since this is just using the wg0 interface directly. I
can provide that setup info if you think it might be relevant.

tshark capture of a simple wget from the computer that can’t connect.


    5 7.615139647 192.168.100.12 → 192.168.100.1 TCP 60 54134 → 80 [SYN] Seq=0 Win=27600 Len=0 MSS=1380 SACK_PERM=1 TSval=3852526353 TSecr=0 WS=128
    6 7.684940917 192.168.100.1 → 192.168.100.12 TCP 60 80 → 54134 [SYN, ACK] Seq=0 Ack=1 Win=27360 Len=0 MSS=1380 SACK_PERM=1 TSval=3308550712 TSecr=3852526353 WS=128
    7 7.684956294 192.168.100.12 → 192.168.100.1 TCP 52 54134 → 80 [ACK] Seq=1 Ack=1 Win=27648 Len=0 TSval=3852526423 TSecr=3308550712
    8 7.685008715 192.168.100.12 → 192.168.100.1 HTTP 202 GET /index.html HTTP/1.1 
    9 7.754723388 192.168.100.1 → 192.168.100.12 TCP 52 80 → 54134 [ACK] Seq=1 Ack=151 Win=28544 Len=0 TSval=3308550782 TSecr=3852526423
   10 7.998440304 a6:67:de:b7:51:27 → Spanning-tree-(for-bridges)_00 STP 88 Conf. Root = 0/0/8a:46:93:88:40:8b  Cost = 0  Port = 0x8003
   11 9.982462221 a6:67:de:b7:51:27 → Spanning-tree-(for-bridges)_00 STP 88 Conf. Root = 0/0/8a:46:93:88:40:8b  Cost = 0  Port = 0x8003
   12 10.321889091 192.168.100.12 → 192.168.100.1 TCP 52 54134 → 80 [FIN, ACK] Seq=151 Ack=1 Win=27648 Len=0 TSval=3852529060 TSecr=3308550782
   13 10.392081110 192.168.100.1 → 192.168.100.12 TCP 52 [TCP Previous segment not captured] 80 → 54134 [FIN, ACK] Seq=1010 Ack=152 Win=28544 Len=0 TSval=3308553420 TSecr=3852529060
   14 10.392097109 192.168.100.12 → 192.168.100.1 TCP 40 54134 → 80 [RST] Seq=152 Win=0 Len=0


-Reuben


More information about the WireGuard mailing list