search

trailofbits / algo

Set up a personal VPN in the cloud
https://blog.trailofbits.com/2016/12/12/meet-algo-the-vpn-that-works/
GNU Affero General Public License v3.0
28.5k stars 2.31k forks source link

Split tunneling of WireGuard module #1746

Open s-fu opened 4 years ago

s-fu commented 4 years ago

Is your feature request related to a problem? Please describe. The WireGuard configuration template (roles/wireguard/templates/client.conf.j2) included a static sentence of "AllowedIPs = 0.0.0.0/0". This will divert all the traffic from client to the VPN server. However, it will be great it a function to divert a set of network to the VPN server only.

Describe the solution you'd like Include the option in config file to override AllowedIPs with customized subnet(s).

Describe alternatives you've considered

Additional context I understand this can be done on client side, but it will make IT and end user lives easier if the configuration file can be generated without tweaking it in a later time.

Tehada commented 2 years ago

@jackivanov , I can make a PR, if there is a chance to add this feature to master branch. What do you think?

jackivanov commented 2 years ago

@Tehada Sure, feel free to send a PR