0
Device identity with wireguard (wg-quick) + systemd-resolved setup
Hello !
How can i show NextDNS Device Identity in wg-quick profile ? Currenttly i have witten NextDNS ipv6 addresses directly to configuration:
[Interface]
PrivateKey = xxxxxxxxx
Address = 172.16.0.2/32
Address = fd01:5ca1:ab1e:8166:5da2:1c15:b617:281f/128
DNS = 2a07:a8c0::12:3456
DNS = 2a07:a8c1::12:3456
MTU = 1280
[Peer]
PublicKey = yyyyyyyyyy
AllowedIPs = 0.0.0.0/0
AllowedIPs = ::/0
Endpoint = engage.cloudflareclient.com:2408It works pretty well but without Device Identity.
Also I have tried next configuration:
[Interface]
PrivateKey = xxxxxxxx
Address = 172.16.0.2/32
Address = fd01:5ca1:ab1e:8166:5da2:1c15:b617:281f/128
MTU = 1280
PostUp = resolvectl dns %i 45.90.28.0#Arch-123456.dns1.nextdns.io
PostUp = resolvectl dns %i 2a07:a8c0::#Arch-123456.dns1.nextdns.io
PostUp = resolvectl dns %i 45.90.30.0#Arch-123456.dns2.nextdns.io
PostUp = resolvectl dns %i 2a07:a8c1::#Arch-123456.dns2.nextdns.io
PostUp = resolvectl dnsovertls %i yes
PostUp = resolvectl domain %i ~.
PostUp = resolvectl dnssec %i off
[Peer]
PublicKey = yyyyyyyyyyy
AllowedIPs = 0.0.0.0/0
AllowedIPs = ::/0
Endpoint = engage.cloudflareclient.com:2408But systemd-resolved sees only these ipv6 addresses without SNI and account ID and Device Identity are both missing.
Third way is remove all DNS related entries from wireguard configuration and write NextDNS servers directly as Global to /etc/systemd/resolve.conf
[Resolve]
DNS=45.90.28.0#Arch-123456.dns1.nextdns.io
DNS=2a07:a8c0::#Arch-123456.dns1.nextdns.io
DNS=45.90.30.0#Arch-123456.dns2.nextdns.io
DNS=2a07:a8c1::#Arch-123456.dns2.nextdns.io
DNSOverTLS=yes
Domains=~.
DNSSEC=noBut this somehow doesn't work at all.
Any ideas ?
Reply
Content aside
- 1 yr agoLast active
- 125Views
-
2
Following