Date: Tue, 25 Nov 2025 13:42:24 +0000 From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 290768] if_wg(4): handshake response has src and dst reverse Message-ID: <bug-290768-7501-mUFi7lztnp@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-290768-7501@https.bugs.freebsd.org/bugzilla/> References: <bug-290768-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=290768 --- Comment #24 from relvy <it@vineyard-sha.de> --- (In reply to vova from comment #20) > can you provide short instruction how to reproduce the issue? Install & setup Wireguard instance on an wg interface. Add a CARP virtual IP to your ethernet interface (your outgoing interface if you have more than one). Add an outgoing NAT rule that does Source NAT from your ethernet IP address to your CARP address. Setup a Wireguard peer. Do *not* use wg(8) to set the peers endpoint address. When setup is done, initiate the connection from the peer. On the peer you should *not* see any incoming traffic. On your wg instance, see tcpdump -n -i <interface> udp and port 51820 see ifconfig <interface> debug and dmesg see wg show see pfctl -s states | grep 51820 -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-290768-7501-mUFi7lztnp>