[lug] Security - Wireguard
Bucky Carr
bcarr at purgatoire.org
Sat Jun 29 11:23:52 MDT 2019
On 6/29/2019 11:20 AM, Zan Lynx wrote:
> On 6/29/2019 10:58 AM, Bucky Carr wrote:
>> Okay, thanks for the update. I didn't know there is a GUI for
>> OpenVPN. One thing especially I don't like about OpenVPN is how
>> chatty it is. Sending those keeplive packets all the time. I don't
>> seem to need the keepalive packets with Wireguard.
>
> You might be surprised.
>
> It probably depends on your exact configuration, but if you're using
> NAT of any kind you're going to need keep-alive packets or the NAT
> hardware will close your connection.
I've read that in many places. I do use NAT but so far the connection
has remained open. But I didn't have the connection sitting idle. I'll
test that with an idle ssh-thru-VPN connection. Thanks for reminding me.
More information about the LUG
mailing list