Skip to main content Need help configuring multicast over WireGuard : r/WireGuard
Go to WireGuard

Need help configuring multicast over WireGuard

Solved

Hi community!

What I need is that every client on my WireGuard network exchange UDP packets to each other and if I use IP from the subnet (10.8.0.0/24) in unicast the packets goes through but I need them to send and receive multicast packets.

They need to exhange those packets only on the wireguard network and those from outside wg0 should't be able to see them.

What I've tried so far is that I put 239.0.0.0/24 in allowed IPs but the packets doesn't seem to go through.

I've read that this is not possible on wireguard as it's L3 but that it could be possible to route those with smcroute.

Is this possible and can someone help me out on this?

Best Regards

Apple Card is a no-fee credit card that gives you up to 3% unlimited Daily Cash back on all of your purchases. Apply now and use right away. Terms apply.
Apply Now
learn.applecard.apple
Thumbnail image: Apple Card is a no-fee credit card that gives you up to 3% unlimited Daily Cash back on all of your purchases. Apply now and use right away. Terms apply.
Sort by:
Best
Open comment sort options

https://an0n-r0.medium.com/making-dlna-through-site-to-site-vpn-work-f393629f4ce0

I've tried following this guide but in my case I have one wireguard server and only peers that are connecting to the server.

More replies More replies
Edited

VxLAN does this! Transports L2 & L3 traffic.
Its pretty simple to configure.

There is also sw tool I use that can automate some of the config set for all your machines.

General vxlan on linux:

https://vincent.bernat.ch/en/blog/2017-vxlan-linux

and vx-wireguard-generator

Which is a great tool to build the required wireguard confis for each node.

[deleted]

Comment deleted by user

 More replies
Edited

Managed to get it working with one peer. When I put 239.0.0.0/24 both on the server and peers, I can only get one to connect at that subnet according to wg command. Is there any way to bypass this?

I feel stuck :)

Unfortunately, you cannot specify a subnet as an allowed ip for more than one peers . However, you could create separate wg interfaces for each client, specify the same multicast subnet for all of them (the allowed ips only need to be unique per interface) and tell smcroute to route that subnet to all interfaces.

More replies

Прекрасно работает iptv через Wireguard Нужно прописать всю подсеть 239.0.0.0/0

More replies
PSA, Redditors: You don't need a business to have a website. All you need is yourself. And with Squarespace, you can easily create a website that reflects your personal brand, individuality, and identity–all by using its intuitive design, AI, and expressibility tools.
Sign Up
squarespace.com
Thumbnail image: PSA, Redditors: You don't need a business to have a website. All you need is yourself. And with Squarespace, you can easily create a website that reflects your personal brand, individuality, and identity–all by using its intuitive design, AI, and expressibility tools.

What I ended up doing is using WireGuard with samplicator. What this utility does is copying the UDP packets and forwarding them to other unicast addresses. It's not the perfect solution, but I will settle for it as of now. Thanks for helping me out on this, and have a nice day!

More replies

can vxlan be over internet?