Native-kernel wireguard support for 21.1 feasible? FreeBSD 13 may have it

Started by TheLinuxGuy, January 19, 2021, 06:34:10 AM

Previous topic - Next topic
Print
Go Down Pages1 2 3 ... 7
User actions
January 19, 2021, 06:34:10 AM
Hi,

I'm wondering if the 21.1 version may have the kernel module for wireguard rather than the golang version?

It seems like FreeBSD 13 will have it soon if https://www.phoronix.com/scan.php?page=news_item&px=FreeBSD-WireGuard-Lands is accurate.
January 19, 2021, 08:57:01 AM #1
Maybe 21.7 or 22.1 .. it depends on how fast backporting while be done.
January 19, 2021, 09:05:00 AM #2 Last Edit: January 19, 2021, 10:00:44 AM by franco
January 19, 2021, 10:01:37 AM #3
@Greelan: I stripped the taptalk redirect URL for the direct link. But thanks for linking, otherwise I would have done it :)


Cheers,
Franco
January 19, 2021, 09:41:01 PM #4
Quote from: franco on January 19, 2021, 10:01:37 AM
@Greelan: I stripped the taptalk redirect URL for the direct link. But thanks for linking, otherwise I would have done it :)


Cheers,
Franco

great thanks for the link. So if pfsense 2.5 includes it in FBSD 12 that would translate to opnsense adding it as well in the current FreeBSD 12 release and thus possibly coming on 21.1?
January 20, 2021, 01:17:23 AM #5
I think 21.1 would be hard to match, wouldn't it? Franco?

Otherwise with screenshots already posted by Netgate about Wireguard Kernel Module hitting the next pfSense 2.5 Snapshots (https://www.netgate.com/blog/wireguard-for-pfsense-software.html) I suppose backporting to FreeBSD 12.x stable should be almost (or already?) done :) Sooo perhaps we'll see it later on in 21.1.x or 21.7?

Looking forward to the first benchmarks between the three in a S2S scenario :)
"It doesn't work!" is no valid error description! - Don't forget to [applaud] those offering time & brainpower to help you!
Better have some *sense as no(n)sense! ;)

If you're interested in german-speaking business support, feel free to reach out via PM.
January 20, 2021, 06:45:41 AM #6
If I rememeber correctly, Olivier tested it on FBSD13 and it was around 2,9Gbit while IPsec 2,6Gbit or so
January 20, 2021, 09:09:59 AM #7
21.1 is next week and more or less in freeze mode so that is a little out of scope, but 21.1.x seems possible if we can motivate Michael to bring this one home. ;)


Cheers,
Franco
January 20, 2021, 09:11:26 AM #8
I'm all in  8)
January 20, 2021, 02:41:17 PM #9
That sounds promising - both 21.1.x and the estimated throughput ;) Could put many IPsec scenarios out of business if you control both ends ;)
"It doesn't work!" is no valid error description! - Don't forget to [applaud] those offering time & brainpower to help you!
Better have some *sense as no(n)sense! ;)

If you're interested in german-speaking business support, feel free to reach out via PM.
January 20, 2021, 03:17:00 PM #10
Quote from: JeGr on January 20, 2021, 02:41:17 PM
That sounds promising - both 21.1.x and the estimated throughput ;) Could put many IPsec scenarios out of business if you control both ends ;)
In one of our offices even wireguard-go already does. Throughput limited by provider bandwidth, delay *much* better than any other VPN protocol I tried.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
January 20, 2021, 03:47:29 PM #11
I did these tests with older Intels (without microcode updates) and wireguard-go was really close to IPsec (compared to OpenVPN):

https://www.routerperformance.net/comparing-opnsense-vpn-performance/
January 21, 2021, 09:55:12 AM #12 Last Edit: January 21, 2021, 09:59:03 AM by Jonny
Quote from: mimugmail on January 20, 2021, 09:11:26 AM
I'm all in  8)

Where do I donate beer money or late late `git push` energy drinks  :P
Adventuring through internet pipes
My Blog
January 22, 2021, 07:19:29 PM #13
I have to disappoint, but Bavaria already has all the beer in the world to push through.  ;D


Cheers,
Franco
January 22, 2021, 08:46:25 PM #14
Just discovered I have a small brewery nearby. Bergfeld Beer :)
Print
Go Up Pages1 2 3 ... 7
User actions