summaryrefslogtreecommitdiff
path: root/docs/vpn/wireguard.rst
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2020-07-26 21:57:53 +0200
committerChristian Poessinger <christian@poessinger.com>2020-07-26 21:57:53 +0200
commit7b8236f9c0965d5aaa77845bc410ab0d0445298d (patch)
tree453a4d24ba13353342e92a0afdde7fbd9d248d4c /docs/vpn/wireguard.rst
parent2694f6007bdd15b699c8b06994600db48cfd3c4d (diff)
downloadvyos-documentation-7b8236f9c0965d5aaa77845bc410ab0d0445298d.tar.gz
vyos-documentation-7b8236f9c0965d5aaa77845bc410ab0d0445298d.zip
vpn: wireguard: all note about redefining allowed-ips
Diffstat (limited to 'docs/vpn/wireguard.rst')
-rw-r--r--docs/vpn/wireguard.rst6
1 files changed, 6 insertions, 0 deletions
diff --git a/docs/vpn/wireguard.rst b/docs/vpn/wireguard.rst
index afd9abfd..0bf53159 100644
--- a/docs/vpn/wireguard.rst
+++ b/docs/vpn/wireguard.rst
@@ -85,6 +85,10 @@ through the WireGuard interface `wg01`. Multiple IPs or networks can be
defined and routed, the last check is allowed-ips which either prevents
or allows the traffic.
+.. note:: You can not assign the same allowed-ips statement to multiple
+ WireGuard peers. This a a design decission. For more information please
+ check the `WireGuard mailing list`_.
+
To use a named key on an interface, the option private-key needs to be
set.
@@ -257,3 +261,5 @@ Operational commands
vyos@wg01# wireguard keypair default
+
+.. _`WireGuard mailing list`: https://lists.zx2c4.com/pipermail/wireguard/2018-December/003704.html