From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from lists.zx2c4.com (lists.zx2c4.com [165.227.139.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id 01E88C072A2 for ; Sun, 19 Nov 2023 13:34:36 +0000 (UTC) Received: by lists.zx2c4.com (ZX2C4 Mail Server) with ESMTP id df147163; Sun, 19 Nov 2023 13:34:34 +0000 (UTC) Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [2001:660:3301:8000::1:2]) by lists.zx2c4.com (ZX2C4 Mail Server) with ESMTPS id 52ba28b7 (TLSv1.2:ECDHE-ECDSA-AES256-GCM-SHA384:256:NO) for ; Mon, 28 Aug 2023 17:41:06 +0000 (UTC) Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/82085) with ESMTP id 37SHeuiW017388; Mon, 28 Aug 2023 19:40:56 +0200 Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id 3FB3779D22; Mon, 28 Aug 2023 19:40:55 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=irif.fr; h= content-type:content-type:mime-version:user-agent:references :in-reply-to:subject:subject:from:from:message-id:date:date :received:received; s=dkim-irif; t=1693244453; x=1694108454; bh= iRq0uDfOwILhBWxvZWxcoLq3is6lOsuRBUPSSrjQlRE=; b=pdDmSP0jQWUBfjHQ 3vsLdWmyUlM8sQ5eQfgx1k4bD5FtrgyvjtnNfCyFeT+KR22+9sIUq83d5Pzl9Kxs 0cIvCgj088xW6roDJUjMBhnusKL07dwWMI2eXHfzJptFrqD9WMpeiA1nDDqzj2co FiYpPDPsf8A18LxZmGEcc37eQQBrQF2j1YrBmYBk1obbWSV8yQ0Wpp/s0TRoQnGY A3ts8i0xODOhLy69f0Bv45C9K3ZU7z+d8R+McYmXBnbCcwe+6G+V6YQYoGoFoXRa 9sl3LtRr8stAUmIyTxF4p4XYYg+ETHwwMy1hCXwup42+ppCmb1iwlH/zn9F0d11n DxavqQ== X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id gjkwtInLKlmX; Mon, 28 Aug 2023 19:40:53 +0200 (CEST) Received: from pirx.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id 6C9AA79926; Mon, 28 Aug 2023 19:40:51 +0200 (CEST) Date: Mon, 28 Aug 2023 19:40:51 +0200 Message-ID: <87v8czqd3w.wl-jch@irif.fr> From: Juliusz Chroboczek To: Daniel =?ISO-8859-1?Q?Gr=F6ber?= Cc: Kyle Rose , bird-users@network.cz, babel-users@alioth-lists.debian.net, wireguard@lists.zx2c4.com Subject: Re: [Babel-users] [RFC] Replace WireGuard AllowedIPs with IP route attribute In-Reply-To: <20230828160705.a5uxv5l2zknna7yj@House.clients.dxld.at> References: <20230819140218.5algu2nfmfostngh@House.clients.dxld.at> <4b-64e11f80-13-5e880900@8744214> <20230819212357.lkshcpslkgbeaq4e@House.clients.dxld.at> <20230828160705.a5uxv5l2zknna7yj@House.clients.dxld.at> User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/29.1 Mule/6.0 MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue") Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [194.254.61.138]); Mon, 28 Aug 2023 19:40:56 +0200 (CEST) X-Miltered: at korolev with ID 64ECDC28.002 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)! X-j-chkmail-Enveloppe: 64ECDC28.002 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/ X-j-chkmail-Score: MSGID : 64ECDC28.002 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000 X-j-chkmail-Status: Ham X-Mailman-Approved-At: Sun, 19 Nov 2023 13:34:33 +0000 X-BeenThere: wireguard@lists.zx2c4.com X-Mailman-Version: 2.1.30rc1 Precedence: list List-Id: Development discussion of WireGuard List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: wireguard-bounces@lists.zx2c4.com Sender: "WireGuard" Daniel, Kyle, I've read the whole discussion, and I'm still not clear what advantages the proposed route attribute has over having one interface per peer. Is it because interfaces are expensive in the Linux kernel? Or is there some other reason why it is better to run all WG tunnels over a single interface? -- Juliusz