Hi,
For WireGuard overhead breakdown [1], maybe it's worth also mentioning
that N the length of encrypted data will be padded to be multiples of
16.
I am only aware of this when fragmentation was spotted. With 1500 as
MTU for ethernet, PPPoE has MTU 1492 (1500 - 8). I thought 1432 (1492
- 60) f
On Wed, 17 Jul 2019 17:45:18 +0800
Yousong Zhou wrote:
> For WireGuard overhead breakdown [1], maybe it's worth also mentioning
> that N the length of encrypted data will be padded to be multiples of
> 16.
>
> I am only aware of this when fragmentation was spotted. With 1500 as
> MTU for ethern
On Tuesday, July 16, 2019 10:08 PM, Jörg Thalheim wrote:
> On 16/07/2019 18.32, Jordan Glover wrote:
>
> > On Tuesday, July 16, 2019 12:21 PM, Jörg Thalheim jo...@higgsboson.tk wrote:
> >
> > > While /usr/bin/env is more or less available on all POSIX systems
> > > /bin/bash might not be. This is
On 17/07/2019 18.32, Jordan Glover wrote:
> On Tuesday, July 16, 2019 10:08 PM, Jörg Thalheim wrote:
>
>> On 16/07/2019 18.32, Jordan Glover wrote:
>>
>>> On Tuesday, July 16, 2019 12:21 PM, Jörg Thalheim jo...@higgsboson.tk wrote:
>>>
While /usr/bin/env is more or less available on all POSI
On Wednesday, July 17, 2019 6:39 PM, Jörg Thalheim wrote:
>
> It does not make anything worse. Your threat model is unreasonable and out of
> scope
> of what the scripts are intended to guarantee.
> There are tones of other environment variables like LD_PRELOAD or
> LD_LIBRARY_PATH
And how exac
Hi Nigel,
I can't tell for sure what your problem is,
but I guess you don't use MSS clamping for the masquerading.
Regards,
Vincent Wiemann
___
WireGuard mailing list
WireGuard@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard
Any SQM measures deployed? That what it caused it on my nodes until
disabled.
On 18/06/2019 17:32, Nigel Magnay wrote:
> Hi!
>
> I have successfully set up a wireguard connection, to a server hosted
> inside Microsoft Azure. Thankyou for this software, it's so much
> easier to configure than the a
I am using WireGuard on my Synology 415+ NAS which runs Linux kernel
3.10.105.
I tried a couple versions of wireguard now, using
https://github.com/runfalk/synology-wireguard as inspiration to compile
them, but none of them seem to work.
The problem I experience is that everything is seemingly co
Hello.
Here is a bug when wireguard's gui tray menu opened.
Sometimes when menu created behind taskbar (known windows bug) you can't
open Windows Start menu by pressing WIN button or click on Start.
Steps to reproduce:
1. Press WIN
2. Right-click Wireguard tray icon
3. Press WIN again, 50/50 Wind
Hi,
I've lived in countries under oppressive DPI systems and I want to see if
its possible to create a DPI bypass system using the wireguard protocol.
During my time under these DPI systems, I've seen them evolve and grow and
get stronger and better in detecting various bypass systems.
In Iran, w
Hello Wireguards,
I've been testing wireguard with OpenVZ/Virtuozzo containers [1] which
is based on CentOS and figured out that it is not possible to create a
wireguard net interface within a container. However it is possible to
create it on the host machine and then move it to the containers net
Hi Jason,
You can get free developer access to RHEL.
https://developers.redhat.com/blog/2018/01/19/command-line-heros-podcast/
Greetings,
Christopher
On Fri, 28 Jun 2019 at 14:03 Jason A. Donenfeld wrote:
> Hi Mike,
>
> While RHEL8 is out, it looks like CentOS 8 is not yet, so I don't have
Den tis 16 juli 2019 kl 19:34 skrev Jordan Glover <
golden_mille...@protonmail.ch>:
> > While /usr/bin/env is more or less available on all POSIX systems
> > /bin/bash might not be. This is particular the case on NixOS and the BSD
> > family (/usr/local/bin/bash). Downstream packagers would often
On 6/8/19 12:18 AM, Toke Høiland-Jørgensen wrote:
Janne Heß writes:
Hey everyone,
as advertised, I have completed the Wireguard support.
You might see that I am not really a C expert, but I hope the code is good
enough.
If you need me to change anything or have additional questions, just
le
I'm running a small fleet of WireGuard servers and clients, the clients use the
Babel routing protocol to detect the latency and packet loss to any of the
servers and select the best one accordingly.
The WireGuard servers are multihomed, they share a user list, keys, and an ip
address. Babel w
Hello,
I got a Raspberry Pi 4 with 4GB Ram.
I ran some benchmarks. With pure iperf3 I get 950 Mbit/s.
With wireguard in the same network I can only get max 750 Mbit/s (which in
itself is already great).
In htop I can see that one of the 4 cores is running at 99%. So I assume
that is the bottlen
Hi folks!
Just a short shameless plug about a little trinket I've been working on,
which creates and manages a mesh network on top of wireguard:
https://github.com/costela/wesher
It doesn't hold up to the same security standards as wireguard itself (as
mentioned in the README), but it's hopefully
Hello,
I've been evaluating the use of Wireguard to replace a setup that uses
OpenVPN. Initial tests look promising in terms of system resources required
(much less CPU than OpenVPN), but I'm encountering a fair amount of packet
loss and I can't see why.
The scenario is a public API endpoint that
Allows for running wireguard-go as non-root user
---
tun/tun_openbsd.go | 11 ++-
1 file changed, 10 insertions(+), 1 deletion(-)
diff --git a/tun/tun_openbsd.go b/tun/tun_openbsd.go
index 1e6191f..bdca231 100644
--- a/tun/tun_openbsd.go
+++ b/tun/tun_openbsd.go
@@ -173,12 +173,21 @@ func
From: liuhaichao
Change-Id: I7df1f9e0ce43dbe9c415e834757385dad2398707
---
rwcancel/rwcancel.go | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/rwcancel/rwcancel.go b/rwcancel/rwcancel.go
index 62397c2..3abfd0a 100644
--- a/rwcancel/rwcancel.go
+++ b/rwcancel/rwcancel.go
@
On Sat, 29 Jun 2019 12:38:01 +0200
Christopher Bachner wrote:
> In htop I can see that one of the 4 cores is running at 99%. So I assume
> that is the bottleneck.
>
> Is there a way to improve this? I assume it does not matter which side is
> the server and which is the client?
You can see that
Hi Alexey,
Cool bug and thanks for the reproduction steps. I see the same thing
you are. I love bugs like these. Will investigate. I've also added it
to our Windows TODO:
https://docs.google.com/document/d/1-jlULsy1uDun-b4ow3RvnNQJU5K_pAv87sqDAfK66Kk/edit?ts=5cd97371
Jason
On Wed, Jul 17, 2019
On Wed, Jul 17, 2019 at 10:40 PM Benedikt Braunger
wrote:
> * can someone explain me why the `NETIF_F_VIRTUAL` feature is missing in
> [3]? Is this somehow purpose?
NETIF_F_VIRTUAL is a OpenVZ-specific thing, right? It's not part of
main line kernel if I understand correctly...
I might be able
Can you let me know if a patch like this does the trick?
diff --git a/src/compat/compat.h b/src/compat/compat.h
index 62885500..d28657cb 100644
--- a/src/compat/compat.h
+++ b/src/compat/compat.h
@@ -844,6 +844,10 @@ static inline void skb_mark_not_on_list(struct
sk_buff *skb)
#define cpu_have_na
Thanks! I rewrote and merged a variant of this.
Jason
___
WireGuard mailing list
WireGuard@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard
Den ons 17 juli 2019 kl 22:53 skrev Roman Mamedov :
> On Sat, 29 Jun 2019 12:38:01 +0200
> Christopher Bachner wrote:
> > In htop I can see that one of the 4 cores is running at 99%. So I assume
> > that is the bottleneck.
> > Is there a way to improve this? I assume it does not matter which side
On Thu, 18 Jul 2019 08:38:54 +0200
Janne Johansson wrote:
> With taskset you should be able to:
> https://www.howtoforge.com/linux-taskset-command/
It appears "taskset" only works on regular programs, not kernel threads:
# taskset -p -c 1 2128
pid 2128's current affinity list: 0
taskset: failed
27 matches
Mail list logo
