linux: bridging/bonding not possible
Roman Mamedov
rm at romanrm.net
Thu Oct 14 07:53:18 UTC 2021
On Thu, 14 Oct 2021 04:45:32 +0200
uxDWzco-wg at moenia.de wrote:
> as I understand, linux needs the ability to change hardware-addresses on
> netdevs to put them into a bridge or bond, but wireguard-netdevs on
> linux don't support hw-addresses at all (at least in kernel 5.10).
>
> is it possible (or even planned) to add hw-addresses to the
> wireguard-netdevs or does this interfere with the concept of wireguard?
Hello,
It is not a matter of hw-addresses;
Wireguard is L3 interface, transferring IPv4 and IPv6 packets.
For bridging you would need an L2 interface, which transfers Ethernet frames.
It is possible to do a bridge with WG, by using an L2-over-L3 tunnel such as
VXLAN or GRETAP over WG, and bridging that. Of course this leads to additional
overhead and MTU reduction.
If you would prefer to have an L2 VPN directly, there are other solutions such
as Tinc and OpenVPN.
--
With respect,
Roman
More information about the WireGuard
mailing list