Is it possible to "mesh" WireGuard together without something like TailScale or do you need a control plane?
-
Is it possible to "mesh" WireGuard together without something like TailScale or do you need a control plane? I was thinking of not using a "hub and spoke" system
-
Is it possible to "mesh" WireGuard together without something like TailScale or do you need a control plane? I was thinking of not using a "hub and spoke" system
@pertho ZeroTier FTW
-
@pertho ZeroTier FTW
@dch Better than Nebula?
-
Is it possible to "mesh" WireGuard together without something like TailScale or do you need a control plane? I was thinking of not using a "hub and spoke" system
@pertho "yes", but you need "something" to make each peer aware of IPs and keys of all the others. I've seen http services, etcd, DNS, DHT used for that. Pick your poison and level of polish
Edit: I guess it sounds more like a "no", in that you need some kind of "control plane" (even if DNS or DHT) to keep peers up to date.
Additionaly, tailscale wraps wireguard in a lot of magic to help it work in network conditions where other things wouldn't be able to.
-
@dch Better than Nebula?
-
@dch Better than Nebula?
@pertho haven’t used nebula but ZeroTier does real peer to peer
-
@pertho "yes", but you need "something" to make each peer aware of IPs and keys of all the others. I've seen http services, etcd, DNS, DHT used for that. Pick your poison and level of polish
Edit: I guess it sounds more like a "no", in that you need some kind of "control plane" (even if DNS or DHT) to keep peers up to date.
Additionaly, tailscale wraps wireguard in a lot of magic to help it work in network conditions where other things wouldn't be able to.
@viq Ah OK that makes sense. Guess I will have to rethink the topology.
-
S stefano@mastodon.bsd.cafe shared this topic
