Difference between revisions of "WireGuard"

Revision as of 10:35, 10 April 2020

wikipedia:WireGuard is a free and open-source software application and communication protocol that implements virtual private network techniques to create secure point-to-point connections in routed or bridged configurations. It use Noise protocol framework, Curve25519, ChaCha20, Poly1305, BLAKE2, SipHash24 and HKDF.

Technical features:

Curve25519 used for identified peers, using their public key, a 32-byte Curve25519 point

 $ sudo apt install wireguard

Included in March 2020 into the Linux Kernel 5.6

WireGuard's encryption speed claims to be faster that IPsec group protocols.

wireguard-go wg0
ip link add wg0 type wireguard

@@ Line 1: / Line 1: @@
-[[wikipedia:WireGuard]] is a free and open-source software application and communication protocol that implements virtual private network techniques to create secure point-to-point connections in routed or bridged configurations.  It use [[Noise protocol framework]], [[Curve25519]], [[ChaCha20]], [[Poly1305]], [[BLAKE2]], [[SipHash24]] and [[HKDF]]. WireGuard use UDP port 41414.
+[[wikipedia:WireGuard]] is a free and open-source software application and communication protocol that implements virtual private network techniques to create secure point-to-point connections in routed or bridged configurations.  It use [[Noise protocol framework]], [[Curve25519]], [[ChaCha20]], [[Poly1305]], [[BLAKE2]], [[SipHash24]] and [[HKDF]].
+Technical features:
+* WireGuard is invisible to illegitimate peers and network scanners <ref>https://www.wireguard.com/papers/wireguard.pdf</ref>
+* WireGuard use UDP port 41414.
 * [[Curve25519]] used for identified peers, using their public key, a 32-byte Curve25519 point