wg syncconf (and setconf) error when one or more endpoints is unresolvable
Christian McDonald
rcmcdonald91 at gmail.com
Tue Jun 15 15:07:33 UTC 2021
Lonnie,
Thanks for the quick response and the trivial fix! This is perfect
Best,
Christian
On Tue, Jun 15, 2021 at 9:24 AM Lonnie Abelbeck
<lists at lonnie.abelbeck.com> wrote:
>
>
> > On Jun 15, 2021, at 5:52 AM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:
> >
> > This is intended behavior. DNS resolution happens at config parsing time.
>
> Christian,
>
> While I appreciate Jason's strict DNS requirement, for the last 2.5 years our project has implemented a trivial patch [1] to ignore endpoint DNS failure. On a DNS failure, essentially ignoring the (optional) Endpoint= dns-hostname peer entry.
>
> This has worked well for our use case. WireGuard always starts.
>
> Lonnie
>
> [1] Ignore endpoint DNS failure
> https://github.com/astlinux-project/astlinux/blob/master/package/wireguard-tools/wireguard-tools-0001-ignore-endpoint-dns-failure.patch
>
--
R. Christian McDonald
E: rcmcdonald91 at gmail.com
More information about the WireGuard
mailing list