ambrose
/
wireguard-negotiator
mirror of https://github.com/serverwentdown/wireguard-negotiator.git
1
0
Fork 0
Code Releases Activity
wireguard-negotiator/README.md

30 lines
819 B
Markdown
Raw Normal View History

Initial project scaffold
2019-12-19 19:48:52 +08:00
Initial commit
2019-12-19 18:03:15 +08:00
# wireguard-negotiator
Initial project scaffold
2019-12-19 19:48:52 +08:00
Initial commit
2019-12-19 18:03:15 +08:00
A not-very-secure manual WireGuard negotiator
Initial project scaffold
2019-12-19 19:48:52 +08:00
## Purpose
`wireguard-negotiator` is built for scenarios where a simple mechanism to exchange and manually accept WireGuard keys is needed. This makes it slightly easier to provision a group of Linux WireGuard peers that peer with a "server".
In summary:
* Manage "client" keys
* Exchange keys over HTTP(S)
Update README and initial routes
2019-12-19 20:52:27 +08:00
* Exchange IP addressing (DHCP-like)
Initial project scaffold
2019-12-19 19:48:52 +08:00
* Manually gate new peers
Update README and initial routes
2019-12-19 20:52:27 +08:00
* Sets up network interface on the "client"
Initial project scaffold
2019-12-19 19:48:52 +08:00
* Generate Ansible INI inventory
Update README and initial routes
2019-12-19 20:52:27 +08:00
The primary scenario this tool is going to be used for is to manage machines using Ansible within an unknown LAN behind NAT. I am planning to use it for FOSSASIA Summit 2020.
Initial project scaffold
2019-12-19 19:48:52 +08:00
## Limitations
* Linux-only
* Manages existing config files only
* Removing peers is a manual process
# Usage
> TODO