[feature] Adding Wireguard and VXLAN support #187
Conversation
nemesifier
added this to In progress
in OpenWISP Priorities for next releases
via automation
pandafy
force-pushed
the
wireguard-vxlan
branch
from
5c28cb4
to
8f50313
Compare
| config['interfaces'][0]['addresses'] = [ | ||
| { | ||
| 'proto': 'static', | ||
| 'family': 'ipv4', |
There was a problem hiding this comment.
We can't know whether the IP address will belong to IPv4 or IPv6 family since we are dealing with variables here.
| @@ -307,7 +307,6 @@ | |||
| "type": "string", | |||
| "title": "ipv4 address", | |||
| "minLength": 7, | |||
| "format": "ipv4", | |||
There was a problem hiding this comment.
This was preventing to us to use variable name in templates
There was a problem hiding this comment.
@pandafy let's make sure Wireguard is mentioned in the README (we have OpenVPN so it makes sense to mention Wireguard as well).
There was a problem hiding this comment.
Sorry I forgot to mention to mention WireGuard it here too: https://github.com/openwisp/netjsonconfig/blob/master/docs/source/index.rst
| @@ -0,0 +1,193 @@ | |||
| ================= | |||
There was a problem hiding this comment.
is this file listed in the toctree? I tried generating the docs and don't see it in the menu.
There was a problem hiding this comment.
No this is not in the toctree. You will see this after clicking on the VPN backends link.
There was a problem hiding this comment.
@nemesisdesign can this be resolved?
| @@ -0,0 +1,78 @@ | |||
| ============================ | |||
There was a problem hiding this comment.
is this file listed in the toctree? I tried generating the docs and don't see it in the menu.
pandafy
force-pushed
the
wireguard-vxlan
branch
2 times, most recently
from
5aa0b36
to
51338a8
Compare
| .. include:: ../_github.rst | ||
|
|
||
| The ``VXLAN over WireGuard`` backend extends :doc:`Wireguard backend </backends/wireguard>` | ||
| to add configurations required for VXLAN. |
There was a problem hiding this comment.
I think something like configurations required for configuring VXLAN tunnels encapsulated in WireGuard tunnels. may be more specific and clear.
docs/source/backends/openwrt.rst
Outdated
| option route_allowed_ips '1' | ||
|
|
||
| VXLAN over WireGuard | ||
| -------------------- |
There was a problem hiding this comment.
I think there's a misunderstanding here.
VXLAN can work independently from wireguard, so we should document it independently.
VXLAN is a layer 2 tunnel which can be encapsulated in any L3 technology, so I don't think we need to specify VXLAN over wireguard.
Maybe, we can leave one last example showing how to encapsulate a vxlan tunnel in a wireguard tunnel.
docs/source/backends/openwrt.rst
Outdated
| | | | | | | ||
| | | | | 2 to 15 alphanumeric characters, dashes and underscores | | ||
| +-----------------------+---------+-----------+-----------------------------------------------------------------+ | ||
| | ``route_allowed_ips`` | boolean | ``False`` | automatically create a route for each Allowed IPs for this peer | |
There was a problem hiding this comment.
It's fine but automatically create a route for each of the Allowed IPs for this peer flows more smoothly.
There was a problem hiding this comment.
@pandafy can you address this suggestion please?
#187 (review)
The rest looks good and I think we should merge!
There was a problem hiding this comment.
@pandafy it's ready to merge but I think we can squash/group some commits of yours to keep history tidy, please proceed when you can.
Related to #185
- Added examples for WireGuard, VXLAN and VXLAN over WireGuard - Updated OpenWrt documentation to describle usage of auto_client methods
pandafy
force-pushed
the
wireguard-vxlan
branch
from
f7e9903
to
6365223
Compare
What's missing:
Postponed: #188.