Discussion in 'privacy technology' started by Rafales, Jul 1, 2016.
WireGuard: next generation in-kernel modern VPN
Good discussion at https://news.ycombinator.com/item?id=11994265
Wyden stumps for Wireguard
June 30, 2018
Wireguard is indeed very easy to setup.
Yes, it seems so. However, unless I'm missing something, it doesn't make much sense these days as no VPN service is using it yet, does it?
I've suggested it to IVPN
But no, not that I know of.
However, I play with VPNs in many ways. Wireguard works well for private links among VPS. Kinda like internal networks in VirtualBox. So you can replicate just about anything that's doable with VMs, using VPS instead. None of it is private or secure from hosting providers, of course. But there are times when anonymity, and lack of constant local traffic, is more important.
The only one I know of is Mullvad https://www.mullvad.net/en/guides/category/wireguard/
Wow! Good for them!
Here's another one.
How I made my own WireGuard VPN server
WireGuard claims to be faster and more secure than OpenVPN
July 28, 2018
Drink this potion, Linux kernel, and tomorrow you'll wake up with a WireGuard VPN driver
Secure tunneling tech hopes to move from module to resident
August 02, 2018
Sounds good to me.
MPTCP would be cool too. For now, you need a custom kernel.
WireGuard VPN review: A new type of VPN offers serious advantages
WireGuard for iOS - TestFlight
November 5, 2018
Great news I won't play with alpha but will install it as soon as final is released.
Yep, same for me. Once it is ready, I will try to switch the VPN connection with my Pi-hole from OpenVPN to Wireguard.
Perfect-Privacy's opinion on WireGuard:
They say too that some other disadvandages are that Random Outgoing IP, TreackStop and NeuroRouting will not work with WireGuard, but these are concerns specific to PP users.
But the "Not usable without logs" is problem for me.
Huh? I've used Wireguard in projects, and didn't log anything.
Maybe it's when one has to manage many user accounts, connected as same time, each of them having the choice to connect to the server they want?
The PP's argument is that "WireGuard has is no dynamic address management, the client addresses are fixed. That means we would have to register every active device of our customers and assign the static IP addresses on each of our VPN servers.
In addition, we would have to store the last login timestamp for each device in order to reclaim unused IP addresses. Our users would then not be able to connect your devices after a few weeks because the addresses would have been reassigned.
It is particularly important to us that we do not create or store any connection logs at all. Therefore, we cannot store the above registration and login data that would currently be required for WireGuard to operate.".
I'm sure that can be worked out, without logging anything important. Maybe something as simple as hosts files.
Testing WireGuard with an early-adopter VPN service
This is an option now with IVPN.
Although no double hop available yet with WireGuard
Yes I got an email from them today!
Separate names with a comma.