> On May 29, 2024, at 3:48 AM, Radek <rdk@int.pl> wrote:
>
> Thank you, that explains everything.
> Does wireguard support replication? Will it work properly in my CARP setup?
wireguard doesn't have "state" per se. it remembers the last address a key was associated with. In the event of a failover, if the client is not at a static endpoint IP of its own, this can cause issues, but _only_ if the traffic after failover all originates from within or behind the CARP endpoint. Once the client checks back in with any wireguard packet it will update the last address and packets can flow again. You also have to have the same client allowed IP in the wireguard configs for this to work of course, where in theory you have the same wireguard config on both CARP members.
No comments:
Post a Comment