From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Jason@zx2c4.com Received: from krantz.zx2c4.com (localhost [127.0.0.1]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id 0637d2d0 for ; Sun, 6 Aug 2017 20:36:07 +0000 (UTC) Received: from frisell.zx2c4.com (frisell.zx2c4.com [192.95.5.64]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id e0c7e932 for ; Sun, 6 Aug 2017 20:36:07 +0000 (UTC) Date: Sun, 6 Aug 2017 22:57:42 +0200 From: "Jason A. Donenfeld" To: Bzzzz Subject: Re: Many users Message-ID: <20170806205739.GA3134@zx2c4.com> References: <20170806210237.4dbbed42@msi.defcon1> <20170806223412.0f22e55a@msi.defcon1> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 In-Reply-To: <20170806223412.0f22e55a@msi.defcon1> Cc: WireGuard mailing list List-Id: Development discussion of WireGuard List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , On Sun, Aug 06, 2017 at 10:34:12PM +0200, Bzzzz wrote: > I guess, when you're talking about "thousands of interfaces", you mean > virtual ones ? Do you recall how many machines he was using ? On the same machine, I mean. I guess you could simulate this kind of thing with: printf '[Interface]\nPrivateKey=%s\n' "$(wg genkey)" > conf head -c $(( 33 * 10000 )) /dev/urandom | base64 | tr -d '\n' | fold -b -w 44 | sed -n 's/\(.*\)../[Peer]\nPublicKey=\1A=/p' >> conf for i in {1..10000}; do ip link add wg$i type wireguard; wg setconf wg$i ./conf; done Careful, though! > > BTW, for such cases may be it could be interesting to link WG to a > sqlite DB ? I've actually got something for this coming through the pipeline soon. I'll keep the list posted when it's ready. Jason