jaquesleroux
commented
3 years ago Any chance this is being actively implemented? 😇
Something that our company requires for security audits and really don't want to revert back to openvpn setup
Open ericty opened 3 years ago
jaquesleroux
commented
3 years ago Any chance this is being actively implemented? 😇
Something that our company requires for security audits and really don't want to revert back to openvpn setup
FossoresLP
commented
3 years ago The patch from the mailing list does sadly not apply since it is for the Go version of WireGuard instead of the kernel module. Since the kernel of EdgeOS is rather old, enabling dynamic debug logs is most likely not an option either, so AFAIK the best option would be to monitor the output of wg.
I was digging through the source code and I don't see any option to log connections from peers. Digging through the WireGuard mailing list it was added in March to linux kernel, but don't know how easy this would be to add to Vyatta/Ubiquiti. https://lists.zx2c4.com/pipermail/wireguard/2020-March/005176.html