performance: multiple clients on one interface?
Aaron Jones
me at aaronmdjones.net
Fri Oct 8 14:55:45 UTC 2021
On 05/10/2021 08:39, uxDWzco-wg at moenia.de wrote:
> using same port for all connections means, that for receiving encrypted
> packets every configured key must be tried, until the right one is
> found, or is this wrong?
Incorrect. The handshake establishes sender and receiver indexes; these
are reproduced in data packets so that the receiver does one hash table
lookup to determine the decryption key.
This is documented on https://www.wireguard.com/protocol/
> so: how many connections are reasonable for a single device, without
> running in to trouble due to the time trying all the keys?
Up to 1,048,576 peers per interface are supported, limited only by
bandwidth and kernel memory.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.zx2c4.com/pipermail/wireguard/attachments/20211008/3acd2ff1/attachment.sig>
More information about the WireGuard
mailing list