Wireguard Question/Help

Diiikco · August 10, 2024, 11:57am

Hello. I’m trying to understand the Wireguard application and what it does. I have installed it and I have added a client. There doesn’t seem to many configuration options for the client adding apart from an IP address. My goal or expectation was that it would mean my umbrel to the outside world would now be anonymous? So if I’m browsing Firefox for example on my umbrel… my traffic would be routed through the wireguard app I’ve installed?

Can anyone point me to some reading or guides or can explain like I’m 5?

Thank you

denny · August 10, 2024, 12:22pm

Hey, I hope this thread can help you:

Diiikco · August 10, 2024, 1:18pm

Thanks - I read this one previously, and it’s more around setting up connecting your mobile device. It doesn’t really answer my question.

denny · August 10, 2024, 2:20pm

Ok. From what I understand, you want to know what Wireguard is and how it works?!

WireGuard is a simple yet fast and modern VPN (Virtual Private Network) that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than other VPN solutions, and is easier to configure. Here’s a simplified explanation of how it works:

1. VPN Basics:

A VPN creates a secure, encrypted connection between your device and a VPN server. This means that all your internet traffic is routed through the VPN server, which can hide your IP address and encrypt your data, providing privacy and security.

2. WireGuard’s Role:

WireGuard is the software that establishes and manages this VPN connection. It is known for its high speed and simplicity.

Diiikco · August 10, 2024, 2:32pm

Thank you for the explanation.

To be a bit more specific then - I think I have 2 questions…

Q1: Once I install the Wireguard application on my Umbrel, is it configured to connect to a VPN server by default? i.e. It is already connected to a VPN server without me having to do anything at all. (If not - how do I find one to connect to? Do I have to pay someone?)

Q2: Once the Wireguard application is configured to connect to a VPN server - does my Umbrel route traffic through it by default?

Thanks

Diiikco · August 11, 2024, 8:44am

Some further understanding I’ve gained…

Wireguard is a VPN (virtual private network) protocol (language/instructions/crytography). Much like Tailscale, it can enable you to setup a secure network between your devices. One benefit of this being that you can access your Umbrel from anywhere.

Installing the Wireguard app, likely adds your Umbrel to the virtual private network. You can then add other “clients” such as your phone. I already use Tailscale to do this and I found it easier.

For the question around servers and anonymous browsing. Wireguard is just the tool that sends secure messages around the private network. Once your stuff leaves your VPN and goes to your ISP (internet service provider), they will do what they want with it.

A “VPN Server” is just a name to refer to someone else’s server that you can connect to, to make your private network larger. You might be in Europe and the VPN Server is in Japan. Your communication is now “Wireguarded” to Japan, and the server in Japan is now the place where your “stuff” leaves from, to go to the wider internet.

From what I can understand, you pretty much just shift where you are placing your “trust”, from your ISP to the Japan VPN server.

Can someone confirm if I am correct?

denny · August 11, 2024, 6:54pm

You’ve got a solid understanding of Wireguard and how it functions in the context of VPNs. Here’s a breakdown to confirm and clarify your points:

1. Wireguard as a VPN Protocol:
Yes, Wireguard is a VPN protocol that uses state-of-the-art cryptography to create secure connections between devices. It allows you to set up a secure network, much like Tailscale, enabling remote access to your devices such as your Umbrel server.

2. Setting Up Wireguard:
Installing the Wireguard app on your device sets up a secure VPN connection. Adding your Umbrel to this network allows secure access to it from anywhere. Adding other clients (like your phone) to this VPN network allows all these devices to communicate securely.

3. Comparison with Tailscale:
Tailscale also uses Wireguard under the hood but simplifies the setup and management of the VPN network, making it easier for users who prefer a more user-friendly approach.

4. Wireguard and ISP:
Correct, Wireguard secures the communication between your devices within the VPN. However, once the data exits the VPN (at the VPN server), it goes through your ISP and can be subjected to their policies and monitoring.

5. VPN Server Functionality:
A VPN server acts as an intermediary in the VPN network. By connecting to a VPN server in another location (e.g., Japan), your internet traffic appears to originate from that server, thereby masking your actual location.

6. Trust Shift:
You are correct that using a VPN server shifts your trust from your ISP to the VPN server provider. While your ISP might not be able to see the contents of your traffic when using a VPN, the VPN server provider can potentially see it, depending on their logging policies and practices.

To sum up, your understanding is accurate. Using Wireguard or any other VPN protocol secures the communication between your devices, but where your data exits the VPN (the VPN server) becomes a new point of trust. This is a fundamental aspect of using VPN services, whether self-hosted or provided by a third party.

If you have any further questions, let me know.

Topic		Replies	Views
Wireguard client, Not resolving DNS for umbrel.local	13	465	September 9, 2024
Wiredguard + AdGuard Support and Troubleshooting	6	100	July 25, 2024
[Guide] Setup Umbrel on VPS with secure access via Wireguard Guides	0	1683	March 18, 2023
VPN/DNS torrent woes Support and Troubleshooting	2	821	November 3, 2022
Big Questions about the Nostr Relay Umbrel App	1	455	June 8, 2024

Wireguard Question/Help

Related Topics