Post · bonfire.cafe

@surfhosting@mastodon.pirateparty.be · last month

speaking of GL.iNet, some exciting news: they are now beta testing #AmneziaWG support on the GL-mT3000 'Beryl AX' after many customer requests.

I've never used AmneziaWG but after hearing about this, I'm thinking about replacing my PiVPN endpoint with one that supports it to assist with testing. mainly because I'd like to be prepared for the eventual case of attempting to use my VPN from an uplink such as a hotel or restaurant which blocks Wireguard.

https://forum.gl-inet.com/t/beta-release-beryl-ax-gl-mt3000-v4-8-2-with-new-wireguard-obfuscation-support/64284 #GLiNet

selfhosting.couchsurfing

@surfhosting@mastodon.pirateparty.be replied · last month

AmneziaWG is a fork of [WireGuard-Go], inheriting the architectural simplicity and high performance of the original implementation, but eliminating the identifiable network signatures that make WireGuard easily detectable by Deep Packet Inspection (DPI) systems.

https://docs.amnezia.org/documentation/amnezia-wg/

AmneziaWG | Amnezia Docs

selfhosting.couchsurfing

@surfhosting@mastodon.pirateparty.be replied · last month

based on what I've read in the forum threads requesting this feature, users in Russia are very very interested in it.

selfhosting.couchsurfing

@surfhosting@mastodon.pirateparty.be replied · last month

I suppose one thing that may be sub-optimal about AmneziaWG is there will be a performance impact to doing this outside of kernelspace, especially when doing it on a low-power device such as a router.

for example, the Beryl AX is capable (with recent kernels) of 300Mbps Max Wireguard perforMance, but its Tailscale perforMance (which is built on Wireguard) is Much lower because the packets have to be shuffled in & out of userspace. so presuMably there will be at least soMe degree of siMilar iMpact on AMneziaWG.

edit: I appear to be wrong about this! froM the docs:

> High Performance — operates as a Linux kernel module, with encryption using the single-pass AEAD algorithm ChaCha20-Poly1305 optimized with SIMD, identical to WireGuard.

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0 no JS en

Automatic federation enabled