From nobody Wed Mar 06 22:33:38 2024 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TqnK63bMGz5DW3t for ; Wed, 6 Mar 2024 22:33:46 +0000 (UTC) (envelope-from dracolich@airmail.cc) Received: from mail.cock.li (mail.cock.li [37.120.193.123]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TqnK24KKpz4XDw for ; Wed, 6 Mar 2024 22:33:42 +0000 (UTC) (envelope-from dracolich@airmail.cc) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=airmail.cc header.s=mail header.b=QZWdnmsm; dmarc=none; spf=pass (mx1.freebsd.org: domain of dracolich@airmail.cc designates 37.120.193.123 as permitted sender) smtp.mailfrom=dracolich@airmail.cc List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=airmail.cc; s=mail; t=1709764418; bh=98X1YYhm9+X5P4jmm72Xtl35dxAWC6F8rmNU0hDSRg0=; h=Date:From:To:Subject:In-Reply-To:References:From; b=QZWdnmsmY94XbTgH9p+NoX5FqQ5gJq+1M9YLwEMMUPXua/MkHfLDoxhDefZzl41uY jJ7GgLemU1imoNTqDDtOTktJtXikkLLiBUhmptuvfoNCGb1Ml9+Fu7y8q9gLUno+oD LSWg3ei3cjaJkU/PRPBNUvBU9OuzKfl2OKgODNvaCLrsZ9yvdOKEWEXMMf9dbgn9OC WkowPm5YI7PwF/nTzcCtR4szAHrekLcscpPn5RBmIerg79atoByNXTGR/evbrZKV9J K1QsuIPyErOpgnZVzy3EgXd5Dh1P7vvLjb0QAFGX4vrtxQDOglgKTIe2O1BQIYZj9M 9wasbvB0Yawog== Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Date: Wed, 06 Mar 2024 22:33:38 +0000 From: Christopher Waldbach To: questions@freebsd.org Subject: Re: Setting up a Wireguard router (with FreeBSD) In-Reply-To: References: <00f7b360407633f787f061b4d15740b9@airmail.cc> User-Agent: Roundcube Webmail/1.4.15 Message-ID: <17ae35e240ce2ec5cb414251e4fca43c@airmail.cc> X-Sender: dracolich@airmail.cc X-Spamd-Bar: / X-Spamd-Result: default: False [-0.98 / 15.00]; RBL_VIRUSFREE_BOTNET(2.00)[37.120.193.123:from]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-0.997]; NEURAL_HAM_SHORT(-0.98)[-0.980]; MIME_GOOD(-0.10)[text/plain]; BAD_REP_POLICIES(0.10)[]; R_SPF_ALLOW(0.00)[+ip4:37.120.193.120/29]; RCPT_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:9009, ipnet:37.120.193.0/24, country:RO]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; DMARC_NA(0.00)[airmail.cc]; MID_RHS_MATCH_FROM(0.00)[]; TO_DN_NONE(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; RCVD_COUNT_ZERO(0.00)[0]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MLMMJ_DEST(0.00)[questions@freebsd.org]; R_DKIM_ALLOW(0.00)[airmail.cc:s=mail]; DKIM_TRACE(0.00)[airmail.cc:+] X-Rspamd-Queue-Id: 4TqnK24KKpz4XDw On 2024-03-06 22:04, Kurt Hackenberg wrote: >> I am currently trying to set up a Raspberry Pi 4 (4GB Model) as a >> VPN-gateway with Wireguard. Since I got fibre channel for my internet >> connection, I gained bandwidth but lost the public IPv4 address. > What? How can you speak IPv4 to the world at all, with no public > address? What does the ISP give you? I should habe known someone would be pedantic. :-) My ISP does not give me _my own_ public IPv4 address. :-D My ISP only provides a DS-Lite connection, which in my case means my router is assigned an IP within the 100.64.0.0/10 realm. > Just on an off chance -- your testing is all IPv4 only, no IPv6, > right? (FreeBSD speaks both by default.) Although I have a fully functional IPv6 connection, in this case, I push both through the VPN. mtr on the Pi shows a route both with the -4 and -6 options, on a machine using it as a default route it only works when wg0 if off. Best regards, Chris