Update files and additional material added
parent
c2ee777930
commit
532d2f179e
|
@ -43,4 +43,8 @@ zathura report/report.pdf
|
||||||
```bash
|
```bash
|
||||||
wireshark pcap/eth1_traffic.pcap # public interface (encrypted traffic)
|
wireshark pcap/eth1_traffic.pcap # public interface (encrypted traffic)
|
||||||
wiershark pcap/wg0_traffic.pcap # wireguard interface (decrypted traffic)
|
wiershark pcap/wg0_traffic.pcap # wireguard interface (decrypted traffic)
|
||||||
|
wiershark pcap/keep_alive.pcap # public interface (encrypted traffic, keepalive packets)
|
||||||
```
|
```
|
||||||
|
|
||||||
|
## Good resource about wireguard
|
||||||
|
- [github](https://github.com/pirate/wireguard-docs)
|
||||||
|
|
|
@ -17,9 +17,9 @@ Vagrant.configure("2") do |config|
|
||||||
kvm.memory_size = '2048m'
|
kvm.memory_size = '2048m'
|
||||||
end
|
end
|
||||||
rootNode.vm.provider :libvirt do |libvirt, override|
|
rootNode.vm.provider :libvirt do |libvirt, override|
|
||||||
libvirt.memory = 2048
|
libvirt.memory = 1024
|
||||||
libvirt.nested = true
|
libvirt.nested = true
|
||||||
libvirt.cpus = 2
|
libvirt.cpus = 1
|
||||||
end
|
end
|
||||||
|
|
||||||
# Ansible provisioning
|
# Ansible provisioning
|
||||||
|
|
|
@ -148,3 +148,16 @@
|
||||||
- name: Add each peer to root node configuration
|
- name: Add each peer to root node configuration
|
||||||
ansible.builtin.shell: "wg set wg0 peer {{ peer_node_pubkeys[item] }} allowed-ips 10.6.0.{{ item+2 }}"
|
ansible.builtin.shell: "wg set wg0 peer {{ peer_node_pubkeys[item] }} allowed-ips 10.6.0.{{ item+2 }}"
|
||||||
loop: "{{ range(0, n_peer_nodes) | list }}"
|
loop: "{{ range(0, n_peer_nodes) | list }}"
|
||||||
|
|
||||||
|
|
||||||
|
# Enable IP forwarding on the peer through which other devices on the network will connect to WireGuard peer
|
||||||
|
# sysctl -w net.ipv4.ip_forward=1
|
||||||
|
# sysctl -w net.ipv6.conf.all.forwarding=1
|
||||||
|
#
|
||||||
|
#
|
||||||
|
#
|
||||||
|
# ENABLE LOGGING FOR DEBUGGING
|
||||||
|
# modprobe wireguard
|
||||||
|
# echo module wireguard +p > /sys/kernel/debug/dynamic_debug/control
|
||||||
|
# dmesg -wH
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue