Development discussion of WireGuard
 help / color / Atom feed
* Wireguard Identity Rotation
@ 2020-06-18  7:00 john walker
  0 siblings, 0 replies; only message in thread
From: john walker @ 2020-06-18  7:00 UTC (permalink / raw)
  To: wireguard

I'm looking for a nice way to rotate keypairs with Wireguard. How much time
do you have to update the initiator and responder with new keypairs before
handshakes fail?

If I understood the whitepaper correctly, sessions aren't immediately invalid
when you change a peers identity. Instead, you have up to 5 minutes to update
both sides, or else the session keys are exhausted. Is this correct?


^ permalink raw reply	[flat|nested] only message in thread

only message in thread, back to index

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-06-18  7:00 Wireguard Identity Rotation john walker

Development discussion of WireGuard

Archives are clonable: git clone --mirror

Example config snippet for mirrors

Newsgroup available over NNTP:

AGPL code for this site: git clone