Jan Johansson
2021-04-14 11:14:47 UTC
Hello!
I was experimenting with wireguard keepalive and noticed that
keepalive packets seems to be sent on double the time that I have
set which I find a bit unintuitive.
The peer is setup like this on side a
wgpeer k....
wgpsk (present)
wgpka 60 (sec)
wgendpoint b.b.b.174 2222
tx: 868, rx: 496
last handshake: 96 seconds ago
wgaip c.c.c.33/32
debug log on side a
11:41:04 wg /bsd: wg0: Sending handshake initiation to peer 4
11:41:04 wg /bsd: wg0: Receiving handshake response from peer 4
11:41:04 wg /bsd: wg0: Sending keepalive packet to peer 4
11:41:04 wg /bsd: wg0: Receiving keepalive packet from peer 4
11:43:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:45:03 wg /bsd: wg0: Sending handshake initiation to peer 4
11:45:03 wg /bsd: wg0: Receiving handshake response from peer 4
11:45:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:45:03 wg /bsd: wg0: Receiving keepalive packet from peer 4
11:47:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:49:03 wg /bsd: wg0: Sending handshake initiation to peer 4
11:49:03 wg /bsd: wg0: Receiving handshake response from peer 4
11:49:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:49:03 wg /bsd: wg0: Receiving keepalive packet from peer 4
11:51:03 wg /bsd: wg0: Sending keepalive packet to peer 4
tcpdump on side b show the following traffic
11:41:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] initiation from 0xcccc
11:41:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] response from 0x8888 to 0xcccc
11:41:04 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x8888 nonce 0
11:41:04 b.b.b.174.2222 > a.a.a.64.1111: [wg] keepalive to 0xcccc nonce 0
11:43:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x8888 nonce 1
11:45:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] initiation from 0xdddd
11:45:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] response from 0x0000 to 0xdddd
11:45:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x0000 nonce 0
11:45:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] keepalive to 0xdddd nonce 0
11:47:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x0000 nonce 1
11:49:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] initiation from 0x1111
11:49:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] response from 0x6666 to 0x1111
11:49:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x6666 nonce 0
11:49:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] keepalive to 0x1111 nonce 0
11:51:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x6666 nonce 1
Is this to be expected or am I missing something?
Both sides run OpenBSD 6.8 amd64 if that affects anything.
Best regards,
Jan J
I was experimenting with wireguard keepalive and noticed that
keepalive packets seems to be sent on double the time that I have
set which I find a bit unintuitive.
The peer is setup like this on side a
wgpeer k....
wgpsk (present)
wgpka 60 (sec)
wgendpoint b.b.b.174 2222
tx: 868, rx: 496
last handshake: 96 seconds ago
wgaip c.c.c.33/32
debug log on side a
11:41:04 wg /bsd: wg0: Sending handshake initiation to peer 4
11:41:04 wg /bsd: wg0: Receiving handshake response from peer 4
11:41:04 wg /bsd: wg0: Sending keepalive packet to peer 4
11:41:04 wg /bsd: wg0: Receiving keepalive packet from peer 4
11:43:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:45:03 wg /bsd: wg0: Sending handshake initiation to peer 4
11:45:03 wg /bsd: wg0: Receiving handshake response from peer 4
11:45:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:45:03 wg /bsd: wg0: Receiving keepalive packet from peer 4
11:47:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:49:03 wg /bsd: wg0: Sending handshake initiation to peer 4
11:49:03 wg /bsd: wg0: Receiving handshake response from peer 4
11:49:03 wg /bsd: wg0: Sending keepalive packet to peer 4
11:49:03 wg /bsd: wg0: Receiving keepalive packet from peer 4
11:51:03 wg /bsd: wg0: Sending keepalive packet to peer 4
tcpdump on side b show the following traffic
11:41:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] initiation from 0xcccc
11:41:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] response from 0x8888 to 0xcccc
11:41:04 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x8888 nonce 0
11:41:04 b.b.b.174.2222 > a.a.a.64.1111: [wg] keepalive to 0xcccc nonce 0
11:43:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x8888 nonce 1
11:45:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] initiation from 0xdddd
11:45:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] response from 0x0000 to 0xdddd
11:45:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x0000 nonce 0
11:45:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] keepalive to 0xdddd nonce 0
11:47:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x0000 nonce 1
11:49:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] initiation from 0x1111
11:49:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] response from 0x6666 to 0x1111
11:49:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x6666 nonce 0
11:49:03 b.b.b.174.2222 > a.a.a.64.1111: [wg] keepalive to 0x1111 nonce 0
11:51:03 a.a.a.64.1111 > b.b.b.174.2222: [wg] keepalive to 0x6666 nonce 1
Is this to be expected or am I missing something?
Both sides run OpenBSD 6.8 amd64 if that affects anything.
Best regards,
Jan J