| ▲ | Frotag 2 hours ago | |
Speaking of Wireguard, my current topology has all peers talking to a single peer that forwards traffic between peers (for hole punching / peers with dynamic ips). But some peers are sometimes on the same LAN (eg phone is sometimes on same LAN as pc). Is there a way to avoid forwarding traffic through the server peer in this case? | ||
| ▲ | Frotag 2 hours ago | parent | next [-] | |
I guess I'm looking for wireguard's version of STUN. And now that I know what to google for, finally found some promising leads. https://github.com/jwhited/wgsd https://www.jordanwhited.com/posts/wireguard-endpoint-discov... | ||
| ▲ | wooptoo 2 hours ago | parent | prev | next [-] | |
Two separate WG profiles on the phone; one acting as a Proxy (which forwards everything), and one acting just as a regular VPN without forwarding. | ||
| ▲ | megous an hour ago | parent | prev [-] | |
Have your network managing software setup a default route with a lower metric than wireguard default route based on wifi SSID. Can be done easily with systemd-networkd, because you can match .network file configurations on SSID. You're probably out of luck with this approach on network-setup-challenged devices like so called smart phones. | ||