On Thu, 14 Oct 2021 04:45:32 +0200 [email protected] wrote: > as I understand, linux needs the ability to change hardware-addresses on > netdevs to put them into a bridge or bond, but wireguard-netdevs on > linux don't support hw-addresses at all (at least in kernel 5.10). > > is it possible (or even planned) to add hw-addresses to the > wireguard-netdevs or does this interfere with the concept of wireguard?
Hello, It is not a matter of hw-addresses; Wireguard is L3 interface, transferring IPv4 and IPv6 packets. For bridging you would need an L2 interface, which transfers Ethernet frames. It is possible to do a bridge with WG, by using an L2-over-L3 tunnel such as VXLAN or GRETAP over WG, and bridging that. Of course this leads to additional overhead and MTU reduction. If you would prefer to have an L2 VPN directly, there are other solutions such as Tinc and OpenVPN. -- With respect, Roman
