WireGuard over WireGuard
Justin Kilpatrick
justin at althea.net
Tue May 12 13:14:11 CEST 2020
Althea uses WireGuard over WireGuard for mesh routing. Each device maintains a link to peers using WireGuard and then also maintains it's connection to the exit over a multihop WireGuard connection.
Building working WireGuard tunnels over fe80 ipv6 link local addresses was a real pain. Packets sometimes arrive only to the interfaced scoped address and other times arrive without an interface scope. Requiring two tunnels to successfully listen on one port.
--
Justin Kilpatrick
justin at althea.net
On Tue, May 12, 2020, at 2:56 AM, Dimitar Vassilev wrote:
> Hi all,
>
> for my enlightenment can you please advise in which situation such
> setups are useful?
>
> Thanks!
>
>
> На чт, 7.05.2020 г. в 4:01 Derrick Lyndon Pallas <derrick at pallas.us> написа:
> >
> > Note for the list: IPv6 has a minimum of 1280, which means 1360 in the
> > outer layer. ~Derrick
> >
> >
> > On 5/6/20 4:54 PM, Jason A. Donenfeld wrote:
> > > On Wed, May 6, 2020 at 5:28 PM John Lauro <johnalauro at gmail.com> wrote:
> > >> Wireguard is defaulting to 1420 MTU, the ethernet adapter is 1500 MTU,
> > >> and I have IPv6 completely disabled.
> > >>
> > >> Can/should the MTU of wireguard be bumped to 1440?
> > > You could if you wanted. But if you don't do it perfectly on all sides
> > > with total uniformity and clearheadedness about your network design,
> > > you'll run into subtle problems.
>
More information about the WireGuard
mailing list