From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: nicolas.prochazka@gmail.com Received: from krantz.zx2c4.com (localhost [127.0.0.1]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id b4928663 for ; Fri, 17 Feb 2017 13:54:52 +0000 (UTC) Received: from mail-lf0-f44.google.com (mail-lf0-f44.google.com [209.85.215.44]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id 9a5bae1b for ; Fri, 17 Feb 2017 13:54:52 +0000 (UTC) Received: by mail-lf0-f44.google.com with SMTP id z127so22827158lfa.2 for ; Fri, 17 Feb 2017 05:55:12 -0800 (PST) MIME-Version: 1.0 In-Reply-To: References: From: Nicolas Prochazka Date: Fri, 17 Feb 2017 14:55:11 +0100 Message-ID: Subject: Re: Some questions about wireguard To: "Jason A. Donenfeld" Content-Type: multipart/alternative; boundary=94eb2c1cb94a2d6b4a0548ba43a1 Cc: WireGuard mailing list List-Id: Development discussion of WireGuard List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , --94eb2c1cb94a2d6b4a0548ba43a1 Content-Type: text/plain; charset=UTF-8 hello, sorry for my english. This question(udp tunnel ..) is not relevant, I learn a lot with the read of mailing list. Regards, Nicolas 2017-02-17 14:48 GMT+01:00 Jason A. Donenfeld : > On Wed, Feb 15, 2017 at 11:12 AM, Nicolas Prochazka > wrote: > > - how many tunnels a peer can manage ? > > In our environnement, ~ 10 000 clients --> "server"|peer > > Each interface can have 65536 peers. Each linux system can have > multiple interfaces. > > (If that peer limit becomes a problem for somebody, it wouldn't be > difficult to remove it and expand it to 4294967296.) > > > how wireguard manage this ( udp tunnel from kernel ? ) > > Not sure I understand your question. Could you rephrase? > > > > > - about peer key management ? > > with 10 000 peer keys, how can we manage it > > You can load the keys into the interface using wg(8). At some later > date there may be support for dynamic database stuff. > --94eb2c1cb94a2d6b4a0548ba43a1 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
hello,
sorry for my english.=
This question(udp tunnel ..)=C2=A0 is not relevant, I learn a lot= with the read of mailing list.
Regards,
Nicolas

2017-02-17 14:4= 8 GMT+01:00 Jason A. Donenfeld <Jason@zx2c4.com>:
On Wed, Feb 15, 2017 at 11:12 AM, Ni= colas Prochazka
<nicolas.prochazka@gmail.= com> wrote:
> - how many tunnels a peer can manage ?
> In our environnement, ~ 10 000 clients --> "server"|peer<= br>
Each interface can have 65536 peers. Each linux system can have
multiple interfaces.

(If that peer limit becomes a problem for somebody, it wouldn't be
difficult to remove it and expand it to 4294967296.)

> how wireguard manage this ( udp tunnel from kernel ? )

Not sure I understand your question. Could you rephrase?

>
> - about peer key management ?
> with 10 000 peer keys, how can we manage it

You can load the keys into the interface using wg(8). At some later<= br> date there may be support for dynamic database stuff.

--94eb2c1cb94a2d6b4a0548ba43a1--