Peer for each mobile client?(SOLVED)
-
Hello guys, I would like to setup WireGuard for mobile clients(Android).
I setup the tunnel, done.
For each mobile device we have to setup a peer?
Them on my mobile device I see that we have to setup manually the address.If I have 30 mobile devices, will be 30 peers for that tunnel?
Other thing, exist a way to route all the traffic from my mobile device over Pfsense-wg tunnel?
Regards!!!
-
Yes, the way WireGuard works, you need to create a peer for each device.
There had been some discussion prior to release about being able to generate a QR code, which could be scanned by the WireGuard mobile app to auto-configure the client... not sure if/when that might come to be.
-
@virgiliomi thanks, question answer.
Maybe that feature will for pf+, I had seen that feature on Linux groups.
Necesitan Soporte de Pfsense en México?/Need Pfsense Support in Mexico?
www.bajaopensolutions.com
https://www.facebook.com/BajaOpenSolutions
Quieres aprender PfSense, visita mi canal de youtube:
https://www.youtube.com/c/PedroMorenoBOS -
@periko There's a website that can generate the QR code from a config file... the site claims that the code to create the QR code runs entirely within the browser, so their server never sees your config info. Shouldn't be hard to validate whether that's the case, but that might be another way to generate them in the meantime.
-
@periko said in Peer for each mobile client?(SOLVED):
@virgiliomi thanks, question answer.
Maybe that feature will for pf+, I had seen that feature on Linux groups.
That has nothing to do with plus or not, the QR code logic is already there. Just read the posts from jimp:
https://forum.netgate.com/post/960960
Long story short, they are working on it, but it's not that "simple" as just create a QR code as WG treats every peer the same so it's not just a "client export" thingy but the exporter has to be flexible as to the settings the user wants the device to have.
