Grâce à @genma , j''utilise maintenant le serveur #wireguard de ma #Freebox quasiment en permanence. Effet inattendu : sur le wifi SNCF du TGV, la connexion est bien plus stable et je n'ai plus aucune coupure sur #Qobuz.

Le tuto de @genma https://blog.genma.fr/?Connexion-VPN-via-le-Wireguard-de-la-Freebox-et-utiliser-le-DNS-local-de-type-PiHole-AdGuard

En ce qui me concerne, j'ai dû ajuster à la marge la configuration de #PiHole pour qu'il accepte les connexions hors locales, mais #PiHole n'étant pas exposé sur le net, cette config est annoncée sécurisée.

@7_Spatzen @lauteshirn @thomas
Privatsphäre:
- sämtlicher www traffic geht über mein privates VPN >> pi-hole
- pixel mit graphene OS (privatspäre orientiertes Android ohne Google, ohne ai)
- wo immer möglich, alles über Browser lösen (shoppen, ai(!)) und natürlich foss
- und weil es mir Spaß bringt: So viel wie möglich selfhosted: Kalender, Kontakte, Cloud, Bilder etc
#grapheneos #wireguard

I'm looking for a more powerful successor of the APU2. Does anyone have a recommendation? Anyone maybe experience with the devices from Protectli, the Vault Pro VP2430 with Intel I226-V igc(4) perhaps?

It has to run #OpenBSD and a dozen of 100mbit #WireGuard tunnels.

/cc @mischa

Un client me parle de souci avec #wireguard pour ses télétravailleurs qui ont du #wifi 7 sous windows.

J'ai pas de #wifi7, je vais me renseigner et tout, mais vous, ça vous parle ?

@njoseph Thanks. Are the certificate issuance and renewals automated?

What about hiding your home connection IP address - is there an easy-to-use integration with Wireguard or some other solution?

Sorry for the questions. I've been trying to decide between #Yunohost, #Freedombox and #HomeServerHQ for a while now. Unfortunately, the #VPS provider I wanted to setup #Wireguard on demanded #KYC self-doxxing so that stopped me in my tracks!

Have people been using #Wireguard on #OpenBSD with #OSPF?

I was thinking of doing that to replace IPsec tunnels encapsulating GIF but… 1-many does not work with OSPF so I guess I’d have to set up as many Wireguard pairs as I have links? Obviously that’s fine, the world has sufficient UDP ports, but it seems inefficient somehow.

What's the common wisdom regarding #Ubuntu #Linux and systemd-resolved, dnsmasq, and NetworkManager?

Had a weird thing happen where a #Wireguard tunnel didn't go up but DNS was still trying to connect to the DNS server over the WireGuard tunnel and was failing.

Is there any way to stop the DNS madness? It looks like they're both clobbering each other.

Has anyone run into an issue in #WireGuard in which the Endpoint is a fully qualified domain name (e.g. vpn.example.org:51820) and the tunnel won't work, but it will work if you put in the IP address (which is IPv4)? I wonder if it has to do with having both IPv4 and IPv6 stacks running and active at the same time on the client and it can't, for some reason our another, establish the tunnel correctly?

That said, since modern versions of #OpenSSH have adopted a post-quantum key exchange by default and #Wireguard isn't, by default at least, totally quantum safe, I wonder if it would be better to use SSH with password login disabled as a VPN instead of Wireguard. You can use the optional PSK option with Wireguard to attain some level of PQ security, but it's not 100% because of the default handshake.

Just thinking out loud.

wireguard-fpga: Full-throttle, wire-speed hardware implementation of Wireguard VPN, using low-cost Artix7 FPGA with opensource toolchain

https://github.com/chili-chips-ba/wireguard-fpga

#wireguard #fpga #opensource

My daughter left home because University is located towns-away from here. This means she now has to connect her iPad to $HOME in order to watch the movies that are hosted in our local VOD system.

Yet another #OpenBSD and #Wireguard user that don’t even know about it. She only knows that she uses a #VPN and that it’s not NordVPN.

#RunBSD

Compiling #lemmy on an #alpine #lxc container running in my #homelab #proxmox over my #wireguard tunnel while waiting for my fast food order is clearly a new level of whatever it is .

Alt...

Photos of MacBook resting on a car dashboard with a proxmox interface open on it you can see a black screen with white and green line with an arrow showing a fifty percent progress

#infosec nerds, what would be genuine good reasons to use #IPSec over something simpler like #Wireguard?