I’m familiar to use dynamic routing and not static routing. All tutorials are with static routing where wireguard is included. First i tried to add the routing and then disable the routing in the same command. Like this: PostUp = ip route delete 192.168.5.0/24 dev wg0; ip route delete 192.168.6.0/24 dev wg0PostDown = sleep 2 Then i found a way to disable the complete manual routing with this syntax in the wireguard config file. Table = off Source.
Blog Posts
https://www.youtube.com/watch?v=emjoM-8zGdo
It looks like that after couple of days of testing wireguard through vyos and using BGP for dynamic routing, i have issue with some routes learned. Actually i discovered that this is a bug of vyos with wireguard. Routes are actually learned but are marked neighbor is marked as inactive and routers are not saved in the kernel routing tables.Routers are there but not there. Currently there is bug opened at vyos that should be fixed in the next version …
From time to time in my daily job i need very fast console access remotely to some network switches. This is not easy all the time.Digging around i found a solution using minicom as a linux application but when you would like to use all 4 USB ports and you need to connect to multiple switches, this is a challenge. Then i found another application called ser2net but the problem was related to USB RS232 adaptors. If you change USB …
Zerotier it was a great solution for all VPN locations until i found out the performance of Wireguard.Installation of Wireguard to Synology looks like was not that easy i was expected (just upload the app). After i found a github guy who explain how to compile the application from docker i had the chance to test the performance.Installation steps:1. Install docker and gitserver2. Commands to to compile in /root git clone https://github.com/runfalk/synology-wireguard.gitcd synology-wireguard/ docker build -t synobuild .docker run --rm …
Topology First of all, let’s specify some internet links to make an idea of maximum throughput performance:Timisoara -> 1000 Mbps down / 500 Mbps upArad -> 90 Mbps down / 90 Mbps upDeva -> 1000 Mbps down / 500 Mbps upOradea -> 1000 Mbps down / 500 Mbps upTimisoara, Oradea and Deva have the same provider and latency between are under 10ms and normally are 5ms.First tests were done between Timisoara and Deva.Hardware of Timisoara: VM machine with 4 cpu’s …
I asked myself how i can migrate SSD from the old one (120GB) to the new one (960GB) without vMotion and on a small ESXi 6.7 hardware. Found out to be pretty simple. Connect to ESXi 6.7 address webpage. Power off the VM you would like to migrate. Go to the datastore and copy/move the VM folder to the other storage location where you like to have it. Right click on the VM and unregister. Confirm. Go again to the …
The problem occurs when i tried to modify the existing wireguard configuration on my test VM VyOS.Error received when i tried to change a peer setting in Wireguard vyos@vyos-router# commit [ interfaces wireguard wg01 ] Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/wireguard.py", line 361, in apply(c) File "/usr/libexec/vyos/conf_mode/wireguard.py", line 224, in apply addr_eff = re.sub("\'", "", c_eff.return_effective_values(intf + ' address')).split() File "/usr/lib/python3.4/re.py", line 175, in sub return _compile(pattern, flags).sub(repl, string, count) TypeError: expected string or buffer [[interfaces wireguard wg01]] failed …
To achieve better results using VPN tunnels to the new Raspberry Pi 4, i tried and search to see if it’s possible to overlock this product.Currently, being a very new one, not too many explanation and support related to this. Being a fan, today i start to test DietPi, very light os for especially small devices like Raspberry Pi.1. Cpu usage. Have a look to this: 2. Ram usage: root@DietPi:~# free -m total used free shared buff/cache available Mem: 1989 …
Zerotier iperf3: Wireguard and Zerotier – New VPN Technologies performance with iperf3 IPerf3 between Raspberry Pi 4 and OPnsense, same LAN. root@pi4:~# iperf3 -c 192.168.5.50 -R Connecting to host 192.168.5.50, port 5201 Reverse mode, remote host 192.168.5.50 is sending [ 5] local 192.168.5.123 port 32994 connected to 192.168.5.50 port 5201 [ ID] Interval Transfer Bitrate [ 5] 0.00-1.00 sec 109 MBytes 914 Mbits/sec [ 5] 1.00-2.00 sec 112 MBytes 940 Mbits/sec [ 5] 2.00-3.00 sec 112 MBytes 940 Mbits/sec [ …
Recent Comments