[prev in list] [next in list] [prev in thread] [next in thread] 

List:       wireguard
Subject:    Re: performance: multiple clients on one interface?
From:       Aaron Jones <me () aaronmdjones ! net>
Date:       2021-10-08 14:55:45
Message-ID: b53d4f44-b094-a5dd-14cf-55b846b17661 () aaronmdjones ! net
[Download RAW message or body]

[Attachment #2 (multipart/mixed)]


On 05/10/2021 08:39, uxDWzco-wg@moenia.de wrote:
> using same port for all connections means, that for receiving encrypted=

> packets every configured key must be tried, until the right one is
> found, or is this wrong?

Incorrect. The handshake establishes sender and receiver indexes; these
are reproduced in data packets so that the receiver does one hash table
lookup to determine the decryption key.

This is documented on https://www.wireguard.com/protocol/

> so: how many connections are reasonable for a single device, without
> running in to trouble due to the time trying all the keys?

Up to 1,048,576 peers per interface are supported, limited only by
bandwidth and kernel memory.


["OpenPGP_signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]