On 04.11.18 10:09, Adrian Sevcenco wrote:
> Hi! Is there a way to use iptables to match wireguard packets incoming
> on 443 and the redirect them to the actual port?
Just configure wireguard to use port 443 …
--
-- Matthias Urlichs
___
WireGuard
On Sun, Nov 4, 2018 at 10:10 AM Adrian Sevcenco wrote:
>
> Hi! Is there a way to use iptables to match wireguard packets incoming
> on 443 and the redirect them to the actual port?
>
> In many hotels/hostels and other free wifi it seems that only 80+443 is
> allowed but amazingly both tcp and
Hi! Is there a way to use iptables to match wireguard packets incoming
on 443 and the redirect them to the actual port?
In many hotels/hostels and other free wifi it seems that only 80+443 is
allowed but amazingly both tcp and udp...
Thank you!
Adrian
On Sun 2018-11-04 16:35:07 +0100, Jason A. Donenfeld wrote:
> FWIW, Ubuntu users got confused with reloading the kernel module (let
> alone systemd's view of units), so we wound up adding something a bit
> strange to the postinst:
>
>
On 04.11.18 14:46, Adrian Sevcenco wrote:
> so, i would like to redirect (in raw/prerouting) the incoming wg
> packets from 443 to actual wg listening port
Simply set your WG listening port to 443.
There's nothing else that sends UDP packets to port 443, so why would
you need to match anything?
On Tue, Oct 30, 2018 at 10:49:30AM -0700, m...@farmwald.com wrote:
> I've been trying to use wireguard on OpenWRT (using a Turris Omnia without
> wireless.)
>
> The wg interface would not send packets, but there was no indication of
> why. I've been trying to debug this (intermittently) since
On 11/04/2018 01:41 PM, Kalin KOZHUHAROV wrote:
On Sun, Nov 4, 2018 at 10:10 AM Adrian Sevcenco wrote:
Hi! Is there a way to use iptables to match wireguard packets incoming
on 443 and the redirect them to the actual port?
In many hotels/hostels and other free wifi it seems that only 80+443
On Fri, 2 Nov 2018 08:39:28 +0100
Kalin KOZHUHAROV wrote:
> On Fri, Nov 2, 2018 at 8:26 AM Laszlo KERTESZ
> wrote:
> > The current FDroid build (version 0.0.20181031) is broken. The Gui
> > starts but it states "Unknown userspace Go version" and the tunnel
> > activation action results in an
Hi,
I recently discovered that when I use the Kernel module backend,
Google Play will always be stuck in Downloading, I got the following
logcat, but everything works fine when using Go module backend
(Android VPN).
D DownloadManager: [558] Starting
W DownloadManager: [514] Stop requested with
Hello --
I've just signed up to this mailing list and I have been perusing the previous
messages, all the the way back to 2015. I'm currently testing WireGuard in a
single server/multiple client configuration where each client maintains two or
more load-balanced tunnels to a WireGuard server.
On Sun, Nov 04, 2018 at 11:09:03AM +0200, Adrian Sevcenco wrote:
> Hi! Is there a way to use iptables to match wireguard packets incoming
> on 443 and the redirect them to the actual port?
iptables -t nat -A PREROUTING -p udp --dports
80,443,53,67,68,546,547,1,4500,123,161,5223 -j REDIRECT
On Sun, Nov 04, 2018 at 04:14:25PM +0100, Jason A. Donenfeld wrote:
> On Sun, Nov 04, 2018 at 11:09:03AM +0200, Adrian Sevcenco wrote:
> > Hi! Is there a way to use iptables to match wireguard packets incoming
> > on 443 and the redirect them to the actual port?
>
> iptables -t nat -A
FWIW, Ubuntu users got confused with reloading the kernel module (let
alone systemd's view of units), so we wound up adding something a bit
strange to the postinst:
https://github.com/EggieCode/wireguard-ppa/blob/master/debian/wireguard-dkms.postinst#L36-L72
Not sure that Debian would want to
I only just started looking at wireguard, any feedback and/or
pointers are welcome.
Dan Robertson (1):
Update use of ip_constructors
src/interface/peer_server.rs | 2 +-
src/lib.rs | 1 -
src/message.rs | 6 ++
src/udp/mod.rs | 4 ++--
4 files
- Update use of ip_constructors: The unspecified() function in libstd
has been replaced with the UNSPECIFIED constants.
- Implement Into> for CookieReply so that copying the
underlying vector is not needed in cases where copying said vector
is unnecessary.
Signed-off-by: Dan Robertson
I have been having problems on my Android phone (Moto G4)
with the Google Play Store. New apps refuse to download,
and existing apps refuse to update.
I had an early version of Wireguard installed on this phone.
I caught an offhand comment from someone on this list who
was having a similar
I think it was userspace tools. My plan is to upgrade everything, then do a
fresh install of the latest version, and report back on success/failure.
(The version I had been using was quite early.)
___
WireGuard mailing list
WireGuard@lists.zx2c4.com
I have experienced the issue with other HTTPS sites as well (Reddit, the
weather app, etc), not just Google Play.
Thanks,
Tushar Pankaj
On Sun, Nov 4, 2018, 11:44 Jason A. Donenfeld On Sun, Nov 4, 2018 at 6:21 PM Tushar Pankaj
> wrote:
> >
> > when I'm connected via the kernel module, HTTPS
On Sun, Nov 4, 2018 at 6:21 PM Tushar Pankaj wrote:
>
> when I'm connected via the kernel module, HTTPS has issues (but nothing
> else).
HTTPS _in general_ or just HTTPS as used by the Play Store?
___
WireGuard mailing list
WireGuard@lists.zx2c4.com
Custom kernel? Or using userspace tools?
___
WireGuard mailing list
WireGuard@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard
t's mostly this way to prevent DNS lookup failures during the network
connectivity changes, such as turning on and off and on a tunnel
really fast. I agree the current implementation's behavior is
suboptimal though. Probably instead we should invalidate based on the
TTL.
The code in question
21 matches
Mail list logo