aboutsummaryrefslogtreecommitdiffstatshomepage
path: root/src/man/wg.8 (follow)
Commit message (Collapse)AuthorAgeFilesLines
* ipc: linux: support incremental allowed ips updatesJordan Rife2025-05-201-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | Extend the interface of `wg set` to leverage the WGALLOWEDIP_F_REMOVE_ME flag, a direct way of removing a single allowed ip from a peer, allowing for incremental updates to a peer's configuration. By default, allowed-ips fully replaces a peer's allowed ips using WGPEER_REPLACE_ALLOWEDIPS under the hood. When '+' or '-' is prepended to any ip in the list, wg clears WGPEER_F_REPLACE_ALLOWEDIPS and sets the WGALLOWEDIP_F_REMOVE_ME flag on any ip prefixed with '-'. $ wg set wg0 peer <PUBKEY> allowed-ips +192.168.88.0/24,-192.168.0.1/32 This command means "add 192.168.88.0/24 to this peer's allowed ips if not present, and remove 192.168.0.1/32 if present". Use -isystem so that headers in uapi/ take precedence over system headers; otherwise, the build will fail on systems running kernels without the WGALLOWEDIP_F_REMOVE_ME flag. Note that this patch is meant to be merged alongside the kernel patch that introduces the flag. Signed-off-by: Jordan Rife <jordan@jrife.io> [Jason: removed linux ifdefs; this will eventually come to other platforms too. minor style nits.] Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* man: mention BSD debuggingJason A. Donenfeld2021-05-061-0/+7
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* man: LOG_LEVEL variables changed naeJason A. Donenfeld2021-01-261-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* man: backlink wg-quick(8) in wg(8)Jason A. Donenfeld2020-02-121-0/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* man: fix grammar in wg(8) and wg-quick(8)Kai Haberzettl2020-02-081-2/+2
| | | | | | | This fixes a few grammatical errors. Signed-off-by: Kai Haberzettl <khaberz@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* man: document dynamic debug trick for LinuxJason A. Donenfeld2020-01-311-0/+9
| | | | | | | | This comes up occasionally, so it may be useful to mention its possibility in the man page. At least the Arch Linux and Ubuntu kernels support dynamic debugging, so this advise will at least help somebody. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* man: add documentation about removing explicit listen-portDevin Smith2019-12-271-1/+1
| | | | | Signed-off-by: Devin Smith <thundza@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* wg: adjust wg.8 syntax for consistency in COMMANDS sectionKai Haberzettl2019-12-131-1/+1
| | | | | Signed-off-by: Kai Haberzettl <khaberz@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* wg: add syncconf commandJason A. Donenfeld2019-11-271-0/+8
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* wg: allow setting WG_ENDPOINT_RESOLUTION_RETRIESJason A. Donenfeld2019-05-291-0/+3
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* wg.8: AllowedIPs isn't actually requiredJason A. Donenfeld2018-10-191-1/+1
| | | | | | | | An empty allowed IPs is totally valid, for folks wishing to move IP addresses between multiple peers atomically. Suggested-by: Comex <comexk@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* wg.8: specify that wg(8) shows runtime info tooJason A. Donenfeld2018-10-191-1/+1
| | | | | Suggested-by: Comex <comexk@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* manpages: eliminate whitespace at the end of the lineJonathan Neuschäfer2018-06-221-4/+4
| | | | | | | This eliminates a few style warnings from "mandoc -T lint src/tools/wg*.8". Signed-off-by: Jonathan Neuschäfer <j.neuschaefer@gmx.net> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* wg: reorganize for multiplatform wg-quickJason A. Donenfeld2018-05-141-0/+230
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.