@kuketzforum interessanter Beitrag. Ich nutze #myfritz + #Wireguard intensiv. Da ich Pi-Hole und andere Dienste wie #Jellyfin usw. als LXC über #Proxmox laufen lasse, werde ich mich mal damit beschäftigen, auch WG hierüber zu steuern und den Dienst in der #Fritzbox abzuschalten. Das ganze läuft allerdings seit sehr langer Zeit schon sehr stabil. Bin auf die Diskussion im Forum gespannt.
@bradley I'm NOT exposing my #pihole (s) directly to the internet - I use one at home and another one via #wireguard #vpn whereever I may roam 
Exposed ports for GUI and "healtchecks" are on a "random" highport which keeps logs mostly clear of "noise". Sometimes some scanners like #censys (or #shodan ) might also find these ports, but #iptables is very helpful 
Feel free to ask my via PM if something is not clear. I like feedback to make my docs better.
@zak I'm running #tailscale with exit nodes on my home network, so when I enable it on my phone, I get both ad-blocking DNS (pihole at home) and access to home resources at the same time. Based on #wireguard.
Cross open source collaboration: ConnMan connecting LibreElec and SailfishOS maintainers to get wider testing for the WireGuard changes. More info on https://forum.libreelec.tv/thread/29601-wireguard-experimental-support-for-connecting-via-fqdn-not-ip/
𓊉@pepperz It uses #wireguard , but allows you to have a set of your systems talking to each other over VPN without having to manually manage each connection (key pairs, ...) individually. Each system that joins becomes part of a mesh. Much, much easier!
@Edent I use #freedombox which includes #nextcloud. I wonder if this means I can't run #wireguard?
@gaufff is Tailscale an alternative to #wireguard
FFS! A server can't run both #Docker *and* #Wireguard on #Linux.
Docker creates a "bridge" network interface which, apparently, interferes with WireGuard.
That was a depressing evening of eliminating the impossible. Completely stopping Docker allowed my VPN to connect.
And there's no way to actually run a Docker container without the network bridge (any documentation that says otherwise is lying).
First look Midori Browser with browsing VPN.
Midori Browser with VPN.... coming soon.
Behind all this there is @opensuse being the best distro :-)
Here is a homebrew tap to install the proxyguard-client for #Wireguard on #MacOS.
It also provides a little wrapper to setup the correct routes etc
https://github.com/freifunkMUC/homebrew-proxyguard-client
This way you can easily use Wireguard over HTTP/HTTPs.
Kennt jemand eine Open Source-Variante von #tailscale? #WIreguard ist einfach, aber das zentral zu managen finde ich angenehm, mit einem #Zero-Trust-Ansatz ist das hübsch....
@StaceyCornelius In the past I did configure seperate systems for clients so they can travel without fuss regardless if "P.R." #China or #Russia or the #USA or #KSA...
Using @tails_live / @tails / #Tails and @torproject / #TorBrowser and when that's not an option, a #SSH-Tunnel / #OpenVPN or #WireGuard-#VPN to be able to #VNC into a machine.
CONSIDER THE #US ENEMY TERRITORY AS IN "If you wouldn't enter #NorthKorea, then why would you enter the USA?"
Почему лучше запустить «сырой», но рабочий сервис, чем доводить его до идеала
Всем привет! Давно не было новостей в нашем блоге. А всё потому, что мы много внимания уделяем нашему коммерческому проекту — Amnezia Premium . Для тех, кто использует AmneziaVPN как self-hosted решение, в скором времени тоже появятся важные и полезные обновления. А пока расскажем немного о том, как мы делали свой «большой VPN» — «не хуже, чем у других». Всё началось в 2020 году, когда мы создали клиент для настройки и установки VPN на собственный сервер. Это казалось отличной идеей, ведь так можно было выбрать любую юрисдикцию, получить собственный белый IP, поделиться доступом с неограниченным количеством друзей и обеспечить защиту от блокировки IP-адреса, ведь в случае с собственным IP никто, кроме владельца VPN, не сможет к нему подключиться. Мы по-прежнему считаем, что это одно из лучших решений, и мы очень благодарны читателям «Хабра», которые советовали и продолжают советовать AmneziaVPN как self-hosted клиент. Но сегодня рассказ будет о том, как мы пришли к премиум-версии.
@ceresbzns You'd probably hate it, as it involves using short-lived nfs mounts through #wireguard tunnels. The hosts in the LAN copy the certs they need in this way. Systemd timers automate this "pulling". I only had to write 10 lines of bash code, in the way of actual programming.
Der neue OpenWrt One spricht Freifunk.
Und da das LeineLab über einen hervorragenden Laser verfügt, haben wir die Skyline Hannovers verstetigt.
Richtig gutes Gerät übrigens. WireGuard Speedtest Nutztraffic 330Mbit/s down, 230Mbit/s up.
WG Tunnel
https://f-droid.org/packages/com.zaneschepke.wireguardautotunnel
An alternative #VPN client for #WireGuard with additional features.
#software #fdroid #wgtunnel
I wanted to set up VPN with ad-blocking for laptop and mobile, for when away from home, so I installed FreeBSD 14.2 on a Raspberry Pi 4, because why not?
Followed:
1) https://www.zenarmor.com/docs/network-security-tutorials/how-to-install-wireguard-on-freebsd
(only using IPv4)
Seems to work as intended, but I'm not sure if ~500 ms ping times are normal for 5G mobile connection through VPN.
I set up a #WireGuard VPN at home last night, and here's what I wish I knew before I started:
It's different than a regular VPN - it has no notion of "users", it just has "peers" which connect with mutually-validated keypairs, over UDP. Then network routing is handled on top of the base protocol. Every connection is natively two-way, but you can use routing rules to make it behave like a traditional VPN. (I saw someone compare it to a "virtual ethernet cable" and that felt right.)
Yes, for some reason, #KDE is way better than #Linux Mint's Cinnamon (or Mate) desktop (LM22), when one has multiple #Wireguard connections. 
I'm also really liking how the Bluetooth devices are connected to right from KDE's panel applet - several steps saved. Worked great.
| wörk 
