site-to-peer topology with wireguard

eudoxos

3/24/23, 3:19 PM

I need to modify an existing Wireguard VPN with start topology (central peer with public IP, called "server" in the schema), so that one site will be connecting via a single "site peer" routing the traffic from other peers in its local network (as opposed to each peer from that site connecting to the "server" directly.

Before I go into depth (I am a Wireguard greenie), is something like this semi-trivially possible with Wireguard? Or am I bending it into something it was not intended for?

116

0 + 0

network-topology

wireguard

A.B

3/24/23, 6:22 PM

The thing that matters for understanding how it's working: https://www.wireguard.com/#cryptokey-routing (the question doesn't provide enough details for me to try and answer, I guess it's possible if nothing in the routing is dynamic).

Zoredache

3/24/23, 7:00 PM

Yes, site-to-site topologies are possible, how easy it is, depends on how well you understand IP routing. I found it pretty easy once I was familiar with wireguard. You can do this with a single wireguard interface at the center, or multiple interface on the central system which might be needed for some more complicated or unusual routing.

JamesThomasMoon

11/2/23, 3:32 AM

The Wireguard part will be relatively easy. The difficult part is 1. the Wireguard servers need routing rules added (typically using `iptables`), and 2. push new routes to other network computers. Maybe my config generator [`wireguard-site-to-site.sh`](https://gist.github.com/jtmoon79/c951f81f621bb87ddb60836245aca4ff/) will help?

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: site-to-peer topology with wireguard

TH: โทโพโลยีแบบไซต์ทูเพียร์พร้อมตัวป้องกัน

RO: topologie site-to-peer cu wireguard

RU: топология site-to-peer с wireguard

VI: cấu trúc liên kết site-to-peer với wireguard

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.