Bridging wg and normal interfaces?

Development discussion of WireGuard
 help / color / mirror / Atom feed

From: "Rafał Grasman" <grasmanek94@gmail.com>
To: wireguard@lists.zx2c4.com
Subject: Bridging wg and normal interfaces?
Date: Thu, 25 Jan 2018 11:23:45 +0100	[thread overview]
Message-ID: <CAMEMCsKxKHtn2ARFchYVTrj2r_ArHQ4DeqaaSYUh96ZKrVk3GA@mail.gmail.com> (raw)

[-- Attachment #1: Type: text/plain, Size: 1184 bytes --]

Hello,

I would like to bridge my LAN and WireGuard interfaces so I can make a
site-to-site VPN with the gateway/router being at the other site.

But when using brctl to add wg0 to a bridge, the operation is not supported.

This is the setup I am aiming for:

Isolated VM virteth0 - preferably dhcp 172.16.0.2/24 from remote site
(gateway 172.16.0.1/24)

Switch VM - wg0 with 172.16.0.254/24 and eth0 with 192.168.1.254/24 (for
internet access through gw 192.168.1.1/24) and virteth0 (manual, no ip, no
dhcp), I want to bridge virteth0 and wg0.

Remote machine with wg0 172.16.0.1/24 and a public ip on eth0 (e.g.
11.22.33.44/32)

both virteth0's are connected together on the host machine.

Is this somehow possible with wireguard? As for now the Switch VM isn't a
switch, it acts as a router which does work but is not something I want
(and forces me to have a different ip on virteth0 on SwitchVM than wg0 has,
this forces me to make everything look like it came from SwitchVM instead
of the real addresses, because both the remote machine and Switch VM have
to act as routers, I want only 1 router in this setup - the remote machine).

Thanks in advance for your time and help :)

[-- Attachment #2: Type: text/html, Size: 1682 bytes --]

next             reply	other threads:[~2018-01-25 10:19 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2018-01-25 10:23 Rafał Grasman [this message]
2018-01-25 11:08 ` Jason A. Donenfeld
2018-01-25 19:44   ` Matthias Urlichs
     [not found]   ` <CAMEMCs+3EJXzOdtU7r1WN9uvzoR91TpLD__JYqY8uGM0Mx7pAw@mail.gmail.com>
2018-01-27 13:24     ` Fwd: " Rafał Grasman

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=CAMEMCsKxKHtn2ARFchYVTrj2r_ArHQ4DeqaaSYUh96ZKrVk3GA@mail.gmail.com \
    --to=grasmanek94@gmail.com \
    --cc=wireguard@lists.zx2c4.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).