Keepalive packets transmitted by default

Aaron Jones me at
Wed Oct 13 02:08:40 UTC 2021

On 12/10/2021 13:52, Gert Mertes wrote:
> Hi,
> My Windows client (0.4.11) will still sporadically send (and receive)
> keepalive packets over an idle tunnel, even though PersistentKeepalive
> is not set in the config of any peer in the tunnel. Explicitly setting
> it to 0 also has the same result. I’m wondering if (i) the above is
> expected behaviour and (ii) is it possible to completely disable
> keepalive packets?
> Thanks,
> Gert

This is the expected behaviour, and it is not possible to disable it.

It's occurring because there is a unidirectional data transfer happening
(e.g. UDP), and the other side is responding with the keepalive because
it hasn't already done so recently (like it would with e.g. a TCP ACK)
and has nothing to send.

The reasons are described in sections 6.2 and 6.5 of the WireGuard

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <>

More information about the WireGuard mailing list