Text only | Text with Images

OPNsense Forum

English Forums => Virtual private networks => Topic started by: arkanoid on November 06, 2023, 09:37:13 AM

Title: Add/remove/edit WireGuard peers without restarting wireguard
Post by: arkanoid on November 06, 2023, 09:37:13 AM
Current WireGuard integration kills all existing connection states on WireGuard network(s) as soon as "apply" is clicked in web GUI, for example when adding or removing a peer from an existing network. This is quite disruptive.

WireGuard is capable of applying a new configuration on a running configuration via the syncconf command, see

https://man.freebsd.org/cgi/man.cgi?query=wg-quick&apropos=0&sektion=0&manpath=FreeBSD+12.2-RELEASE+and+Ports&arch=default&format=html (https://man.freebsd.org/cgi/man.cgi?query=wg-quick&apropos=0&sektion=0&manpath=FreeBSD+12.2-RELEASE+and+Ports&arch=default&format=html)

https://serverfault.com/questions/1101002/wireguard-client-addition-without-restart (https://serverfault.com/questions/1101002/wireguard-client-addition-without-restart)
Title: Re: Add/remove/edit WireGuard peers without restarting wireguard
Post by: franco on November 06, 2023, 09:39:24 AM
https://github.com/opnsense/plugins/pull/3358 it's being discussed


Cheers,
Franco
Title: Re: Add/remove/edit WireGuard peers without restarting wireguard
Post by: arkanoid on November 06, 2023, 09:52:29 AM
Thanks! I'll follow GitHub thread, then.
Title: Re: Add/remove/edit WireGuard peers without restarting wireguard
Post by: franco on November 09, 2023, 04:09:08 PM
It should be fixed in 23.7.8.


Cheers,
Franco
Text only | Text with Images