Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
| docs:guide-user:services:vpn:wireguard:basics [2023/03/15 17:33] – [Key management] vgaetera | docs:guide-user:services:vpn:wireguard:basics [2023/08/29 13:17] – add howto for debugging info darksky2 | ||
|---|---|---|---|
| Line 12: | Line 12: | ||
| While the private key is best never disclosed outside the peer where it was generated. | While the private key is best never disclosed outside the peer where it was generated. | ||
| For better security, you can also generate and exchange a pre-shared key. | For better security, you can also generate and exchange a pre-shared key. | ||
| - | Each pair of peers should use a common | + | Each pair of peers should use one pre-shared key. |
| ===== Time synchronization ===== | ===== Time synchronization ===== | ||
| Line 43: | Line 43: | ||
| The menu **LuCI -> Status -> WireGuard** shows information about the WireGuard VPN. | The menu **LuCI -> Status -> WireGuard** shows information about the WireGuard VPN. | ||
| + | ===== Enabling debug support ===== | ||
| + | To have wireguard send debug messages to the kernel message buffer, one must compile the kernel with the following option enabled: | ||
| + | - Global build settings >> Kernel build options >> Compile the kernel with debug information | ||
| + | |||
| + | The resulting option will be the creation of **/ | ||
| + | < | ||
| + | echo module wireguard +p > / | ||
| + | </ | ||
| + | |||
| + | Now wireguard transactions should be echoed to the kernel message buffer. | ||