> OPNsense 19.7 supports WireGuard<p>yep, can confirm :)<p>currently running on this passively-cooled thing:<p><a href="https://www.amazon.com/Firewall-Micro-Appliance-Gigabit-AES-NI/dp/B0742Q3NT6" rel="nofollow">https://www.amazon.com/Firewall-Micro-Appliance-Gigabit-AES-...</a>
Is there a way to suggest additions to the page? Wireshark supports WireGuard dissection and decryption[1], and the pcapng[2] file format has a block type defined for WireGuard secrets.<p>[1]<a href="https://wiki.wireshark.org/WireGuard" rel="nofollow">https://wiki.wireshark.org/WireGuard</a><p>[2]<a href="https://github.com/pcapng/pcapng" rel="nofollow">https://github.com/pcapng/pcapng</a>
> "wireguard-vanity-address[0] — generate Wireguard keypairs with a given prefix string"<p>generating 4-5 character-prefixed keys seems to up the chances of collision by many orders of magnitude, right? but even so, is that enough of a concern to not use such a tool?<p>[0] <a href="https://github.com/warner/wireguard-vanity-address" rel="nofollow">https://github.com/warner/wireguard-vanity-address</a>
<a href="https://github.com/trailofbits/algo" rel="nofollow">https://github.com/trailofbits/algo</a> Also supports it.<p>Have been using it for personal VPN deployments, very easy to use and each time I notice they have made moves to be more secure.
> It is recommended to use official WireGuard software whenever possible.<p>I don't agree with his sentiment <i>at all</i>.
With OpenVPN Viscosity is by far the best OpenVPN client and both the 'official' client (OpenVPN) and the open source alternative (Tunnelblick) are buggy and have crappy UI.
I'm hoping Sparklabs either repurpose Viscosity to include WireGuard as well, or write a new client specifically for WireGuard (which I'd happily buy).<p>Edit: wow, what the hell. I guess HN hates improved clients with a violent passion.