Development discussion of WireGuard
 help / color / mirror / Atom feed
* Fw: Suggestion: Extended AllowedIPs syntax
       [not found] <IVCtdT6g25RGmvC0J8IaIfgXll8aFl8QRaSYYN-fsGA40QXw2xuMVS39Ujnaq1bqqg6LoKRxyo80ZrV-yxoYIUSNXAZV_sWZhfdRj3QWPFo=@protonmail.com>
@ 2021-02-07 14:20 ` pg131072
  2021-02-08 21:10   ` Posegga, Joachim
  0 siblings, 1 reply; 2+ messages in thread
From: pg131072 @ 2021-02-07 14:20 UTC (permalink / raw)
  To: wireguard

I find the AllowedIPs CIDR format difficult to grok. What if Wireguard allowed...

 +IP/mask - add a range
 +IP-IP - add a range
 -IP/mask - remove a range
 -IP-IP - remove a range

Multiple terms would be interpreted left to right

i.e.

AllowedIPs: +1.2.3.0/24 -1.2.3.1-1.2.3.10 -1.2.3.255

Example C++ code:https://pastebin.com/mCLCg5vr

Thanks

PG

Note: I originally posted to Reddit: 
https://www.reddit.com/r/WireGuard/comments/lemdmv/suggestion_extended_allowedips_syntax/



^ permalink raw reply	[flat|nested] 2+ messages in thread

* RE: Suggestion: Extended AllowedIPs syntax
  2021-02-07 14:20 ` Fw: Suggestion: Extended AllowedIPs syntax pg131072
@ 2021-02-08 21:10   ` Posegga, Joachim
  0 siblings, 0 replies; 2+ messages in thread
From: Posegga, Joachim @ 2021-02-08 21:10 UTC (permalink / raw)
  To: pg131072, wireguard

I would very much appreciate a way to exclude subnets from being routed through a wg tunnel. Would be much more convenient than changing the system's routing table by hand, e.g. if you want to keep connectivity to your local subnet when establishing a tunnel for 0.0.0.0/0.

-----Original Message-----
From: WireGuard [mailto:wireguard-bounces@lists.zx2c4.com] On Behalf Of pg131072
Sent: Sunday, 7 February, 2021 15:21
To: wireguard@lists.zx2c4.com
Subject: Fw: Suggestion: Extended AllowedIPs syntax

I find the AllowedIPs CIDR format difficult to grok. What if Wireguard allowed...

 +IP/mask - add a range
 +IP-IP - add a range
 -IP/mask - remove a range
 -IP-IP - remove a range

Multiple terms would be interpreted left to right

i.e.

AllowedIPs: +1.2.3.0/24 -1.2.3.1-1.2.3.10 -1.2.3.255

Example C++ code:https://pastebin.com/mCLCg5vr

Thanks

PG

Note: I originally posted to Reddit: 
https://www.reddit.com/r/WireGuard/comments/lemdmv/suggestion_extended_allowedips_syntax/



^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2021-02-08 21:17 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <IVCtdT6g25RGmvC0J8IaIfgXll8aFl8QRaSYYN-fsGA40QXw2xuMVS39Ujnaq1bqqg6LoKRxyo80ZrV-yxoYIUSNXAZV_sWZhfdRj3QWPFo=@protonmail.com>
2021-02-07 14:20 ` Fw: Suggestion: Extended AllowedIPs syntax pg131072
2021-02-08 21:10   ` Posegga, Joachim

Development discussion of WireGuard

This inbox may be cloned and mirrored by anyone:

	git clone --mirror http://inbox.vuxu.org/wireguard/0 wireguard/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 wireguard wireguard/ http://inbox.vuxu.org/wireguard \
		wireguard@lists.zx2c4.com
	public-inbox-index wireguard

Example config snippet for mirrors.
Newsgroup available over NNTP:
	nntp://inbox.vuxu.org/vuxu.archive.wireguard


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git