From: Luis Ressel <aranea@aixah.de>
To: ST <smntov@gmail.com>
Cc: wireguard@lists.zx2c4.com
Subject: Re: WG: ideas/features
Date: Mon, 26 Mar 2018 21:06:24 +0200 [thread overview]
Message-ID: <20180326210624.20c39ed5@vega.skynet.aixah.de> (raw)
In-Reply-To: <1522084637.2044.53.camel@gmail.com>
On Mon, 26 Mar 2018 20:17:17 +0300
ST <smntov@gmail.com> wrote:
> Hello,
>
> as I mentioned before I'm learning WireGuard and there are certain
> things that I need but didn't find them yet in the docs (either
> because I didn't read enough yet or because it's just not there).
> I'll list them here and you'll tell whether it is worth for a new
> feature or not; or whether I should continue reading...
Don't ask whether you should read the docs. Of course you should,
that's the whole purpose of documentation! :)
> 1. Labels.
>
> Is it possible to add an optional label to a peer to make it a bit
> more usable for humans (who tend not to remember IPs or keys). A label
> associated with a peer is just a string (could be a first/last name,
> email, "NY Office" or whatever). So if you read through the .conf file
> or query wg for that label - you can get the right IP to SSH to, if
> needed.
This has been suggested a few times already, but so far noone has
bothered to implement it. I don't see any fundamental issues with the
idea, though.
> In the .conf file it could probably be realized through some sort of
> comments before each [Peer] section (didn't check whether # or
> something actually work). But querying wg from command line for a
> label is also handy...
As documented in wg(8), wireguard's config files can indeed contain
comments.
>
> 2. Includes in .conf files.
>
> Is it possible to include .conf files in the main wg0.conf file? Like:
>
> [Interface]
> ...
>
> Include ./us_peers.conf
> Include ./eu_peers.conf
>
> [Peer]
> ...
>
> This way you can group peers into pools, so there will be a bit more
> order/structure...
The config parser doesn't support file inclusion. It doesn't seem to be
worth the hassle to add it either, since there's another way to combine
multiple config files: wg's "addconf" verb. It'll load a config file
without wiping out prior configuration, so you can combine config files
by chaining multiple "wg addconf" verbs.
If atomicity is desired, you could also concatenate the config files to
a temporary file which you then supply to wg setconf (or perhaps even
pipe the concatenated files to "wg setconf /proc/self/fd/0").
Cheers,
Luis
next prev parent reply other threads:[~2018-03-26 18:54 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-03-26 17:17 ST
2018-03-26 19:06 ` Luis Ressel [this message]
2018-03-26 19:15 ` wireguard
2018-03-26 19:44 ` ST
2018-04-13 22:31 ` ideas/features Jason A. Donenfeld
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180326210624.20c39ed5@vega.skynet.aixah.de \
--to=aranea@aixah.de \
--cc=smntov@gmail.com \
--cc=wireguard@lists.zx2c4.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).