FreeBSD wireguard wg-quick remote IP address assignment is incorrect
Jason A. Donenfeld
Jason at zx2c4.com
Sun Feb 23 12:37:48 CET 2020
We tried this already and it didn't work. See the below commit.
Perhaps you can update that bug report you filed?
commit 2c6cabd73dfb23990c245250ef2e502bdb33d189
Author: Jason A. Donenfeld <Jason at zx2c4.com>
Date: Thu Feb 28 19:03:11 2019 +0100
wg-quick: freebsd: rebreak interface loopback, while fixing localhost
The commit 7c833642 ("wg-quick: freebsd: allow loopback to work") was
supposed to make things better, but actually it just started sending
legitimate localhost traffic over the WireGuard interface, which is
really quite bad.
This reverts commit 7c833642dfa342218602ab18e7091e86408d2982.
Reported-by: Matt Smith <matt.xtaz at gmail.com>
Signed-off-by: Jason A. Donenfeld <Jason at zx2c4.com>
diff --git a/src/wg-quick/freebsd.bash b/src/wg-quick/freebsd.bash
index 93f1a3b7..e83dbef0 100755
--- a/src/wg-quick/freebsd.bash
+++ b/src/wg-quick/freebsd.bash
@@ -158,7 +158,7 @@ add_addr() {
if [[ $1 == *:* ]]; then
cmd ifconfig "$INTERFACE" inet6 "$1" alias
else
- cmd ifconfig "$INTERFACE" inet "$1" 127.0.0.1 alias
+ cmd ifconfig "$INTERFACE" inet "$1" "${1%%/*}" alias
fi
}
More information about the WireGuard
mailing list