From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-2.3 required=3.0 tests=HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS,USER_AGENT_SANE_1 autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 9B287CA9EAD for ; Sun, 20 Oct 2019 20:34:33 +0000 (UTC) Received: from krantz.zx2c4.com (krantz.zx2c4.com [192.95.5.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id CED1321928 for ; Sun, 20 Oct 2019 20:34:32 +0000 (UTC) DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org CED1321928 Authentication-Results: mail.kernel.org; dmarc=none (p=none dis=none) header.from=matrix-dream.net Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=wireguard-bounces@lists.zx2c4.com Received: from krantz.zx2c4.com (localhost [IPv6:::1]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id ad3ebe08; Sun, 20 Oct 2019 20:34:20 +0000 (UTC) Received: from krantz.zx2c4.com (localhost [127.0.0.1]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id 31acb1c8 for ; Sun, 20 Oct 2019 20:34:18 +0000 (UTC) Received: from mail1.matrix-dream.net (mail1.matrix-dream.net [IPv6:2a0a:51c0::71]) by krantz.zx2c4.com (ZX2C4 Mail Server) with ESMTP id 903bcec7 for ; Sun, 20 Oct 2019 20:34:18 +0000 (UTC) Received: from ivan by mail1.matrix-dream.net with local (Exim 4.92.2) (envelope-from ) id 1iMHly-0000WQ-Rz; Sun, 20 Oct 2019 20:25:54 +0000 Date: Sun, 20 Oct 2019 20:25:54 +0000 From: Ivan =?iso-8859-1?Q?Lab=E1th?= To: Hendrik Friedel Subject: Re: Keep-alive does not keep the connection alive Message-ID: <20191020202554.GA1752@matrix-dream.net> References: <20190826180244.GB5022@matrix-dream.net> <20190828065411.GA6914@matrix-dream.net> <20190910091922.GA5679@matrix-dream.net> MIME-Version: 1.0 Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.10.1 (2018-07-13) Cc: wireguard@lists.zx2c4.com X-BeenThere: wireguard@lists.zx2c4.com X-Mailman-Version: 2.1.15 Precedence: list List-Id: Development discussion of WireGuard List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: wireguard-bounces@lists.zx2c4.com Sender: "WireGuard" Archived-At: List-Archive: On Thu, Oct 17, 2019 at 07:03:40PM +0000, Hendrik Friedel wrote: > >> > >> >As a workaround you could > >> > - unconditionally periodically update the endpoint > >> This would break existing transfers without reason. > > > >As I said, you could try periodically updating the endpoint, and only > >endpoint, not restarting or changing anything except peer ip+port. > >If updating endpoint information (to the same or valid ip+port) does break > >connections, then I believe it is a bug that should be reported. > > I was not able to find commands for updating the endpoint without > restarting the tunnel. > Can you give me a hint? wg set [listen-port ] [fwmark ] [private-key ] [peer [remove] [preshared-key ] [endpoint :] [persistent-keepalive ] [allowed-ips /[,/]...] ]... so something like: wg set peer endpoint : > >If the server changes IPs and the client remains reachable on previous ip+port, > >keepalive on server should keep your tunnel alive. > > > > > >Roaming will work if the side that changes ips: > > a) has keepalive enabled, so it will send a packet periodically > > b) sends an unsolicited packet (e.g. requests something from the > > other side as clients usually do but server less so) > > c) ip is changed after a request is received and before a reply is > > sent (could happen but unreliable) > > > > I think, there is an 'or' between a, b and c? Yes, either of those. -- Ivan _______________________________________________ WireGuard mailing list WireGuard@lists.zx2c4.com https://lists.zx2c4.com/mailman/listinfo/wireguard