Road Warrior config with fwmark
Bruno Wolff III
bruno at wolff.to
Tue Nov 14 17:34:53 CET 2017
It would be nice if fwmark was mentioned on https://www.wireguard.com/netns/
when covering routing all of your traffic through your tunnel for Road
Warrior setups.
I noticed the fwmark support when looking at tools/wg-quick.bash.
fwmark can be used to set up routing configurations that are essentially
(they don't give bogus addresses) independent of the local network
configuration. So no special action needs to be taken as you move from
one wireless network to another. This makes the rules based approach much
more competitive with the namespace technique.
I have this working on my laptop, but I want to tweak my router so that
I don't need to have special iptables rules on my home network.
I have things set up to give my laptop the same static IP address, no matter
where it is located.
More information about the WireGuard
mailing list