-
TIL: @WireGuardVPN does not currently support overlapping AllowedIPs ranges for multiple peers on the same interface (docs.nycmesh.net/networking/vpnwireguardospf/ is a very helpful resource!). This makes a mesh setup much more annoying than it needs to be...On twitter.com
❤️ 2 Favorites Mood +2 🙂
-
@WireGuardVPN As I now need to generate multiple @WireGuardVPN interfaces for each host to support my current side project of a fully-meshed WAN-distributed VM/container cluster, I might need to learn how to use Salt Mine (docs.saltproject.io/en/latest/topics/mine/index.html) iterators. Then salt-ssh is mostly out...Permalink On twitter.com
-
Update: I have a SaltStack config that will auto-generate all required @WireGuardVPN config files on all mesh hosts. Next step: bird config files for dynamic routing, and integration with #Proxmox PVE interface for cluster and pve.proxmox.com/wiki/Storage_Replication configuration.Permalink On twitter.com