Differences

This shows you the differences between two versions of the page.

--- userdoc:tt_wireguard_vpn [2019/09/20 13:36]
abelbeck [WireGuard Configuration Options]
+++ userdoc:tt_wireguard_vpn [2019/09/22 11:06]
abelbeck [WireGuard Configuration Options]
@@ Line 187: / Line 187: @@
 !!Important ->!! The default policy is to allow all **WG->Local** traffic unless "Pass WG->Local" is defined, then the default policy is to deny all **WG->Local** traffic.
+ICMP Echo Request (ping) packets are allowed and rate-limited for **WG->Local** traffic, regardless of the "Firewall Rules:" choice.
   * TCP: Define ''TCP'' rules of the form; host1,host2~port1,port2 host3,host4~port3,port4 ...
   * UDP: Define ''UDP'' rules of the form; host1,host2~port1,port2 host3,host4~port3,port4 ...
-!!Tip ->!! Allow SSH traffic, deny all other traffic ... choose "Pass WG->Local" and set ''TCP'' to ''0/0~22''
+!!Tip ->!! Allow SSH and DNS traffic, deny all other traffic ... choose "Pass WG->Local" and set ''TCP'' to ''0/0~22'' and ''UDP'' to ''0/0~53''
 !!Tip ->!! Deny HTTP/HTTPS traffic, allow all other traffic ... choose "Deny WG->Local" and set ''TCP'' to ''0/0~80,443''
 !!Tip ->!! Click on the blue ''(i)'' icon for detailed help.
-ICMP Echo Request (ping) packets are allowed and rate-limited for **WG->Local** traffic, regardless of the "Firewall Rules:" choice.
 \\
@@ Line 255: / Line 255: @@
 ===== WireGuard Client Support =====
-WireGuard is now available for [[https://www.wireguard.com/install/|Android]] and as Beta-Version for [[https://www.wireguard.com/install/|Apple iOS]] (via TestFlight app only ≥12.x).
+WireGuard is now available for [[https://www.wireguard.com/install/|iOS / Android / macOS / Windows]] installation.
+Each client is open source and free to use.
 \\