BGP over multiple wireguard vpn link

Mike O'Connor mike at
Sat Feb 8 11:30:12 CET 2020

Hi Miki

I'm doing basically what your talking about but with OSPF.

I do not use wg-quick, instead I configure the Wireguard in the network
interface file like /etc/network/interface on all the machines.

iface wg-p2p inet static
            pre-up ip link add $IFACE mtu 1500 type wireguard
            pre-up wg setconf $IFACE /etc/wireguard/$IFACE.conf
            post-down ip link del $IFACE

Central machines I'll list the allowed ip addresses from the individual

On the peers I'll have an allow all like
AllowedIPs =, ::/0

The allow all ip's on each peer does not add a route but does allow any
traffic to be sent to the central system.

>From that point you can configure any dynamic routing system you want.


On 17/1/20 9:23 pm, Roberto 007 wrote:
> Hello Wireguard team,
> I would like to test multiple VPN links with BGP which is for
> controlling traffic.
> I have no problem to make BGP over multiple links but once I tried to
> ping then I found a problem because I cannot set Allowed-IPs
> <> to all the wireguard links.
> My question is that this kind of configuration is not supported
> wireguard? 
> I could make it with IPSec without any issues.
> If you could give us some advice, it would be greatly appreciated.
> Thanks and best regards,
> Miki
> _______________________________________________
> WireGuard mailing list
> WireGuard at

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the WireGuard mailing list