文档建议反馈控制台
首页
学习
活动
专区
圈层
工具
MCP广场
文章/答案/技术大牛
发布
社区首页 >问答首页 >WireGuard一致性断开- Ubuntu和Android

WireGuard一致性断开- Ubuntu和Android
EN

Server Fault用户
提问于 2022-10-10 20:34:15
回答 1查看 906关注 0票数 0

问题描述: Wireguard客户端每隔10分钟就断开连接。

我已经尝试过: 1.调整KeepAlive 2.更改IP地址(私有)并多次重新启动服务3. MTU调整

观察:客户端断开连接后,端口将从客户端更改。(见下面的日志)

代码语言:javascript
复制
[Oct10 20:01] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[ +32.141624] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:40667)

提供信息:服务器:Ubuntu20.4/ Client: Android / wireguard-tools v1.0.20200513

服务器Config:

代码语言:javascript
复制
[Interface]
Address = 10.88.88.1/24
#SaveConfig = true
PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
ListenPort = 8080
PrivateKey = key

[Peer]
PublicKey = key
AllowedIPs = 10.88.88.2/32, 192.168.1.0/24
PersistentKeepalive = 10

客户Config:

代码语言:javascript
复制
[Interface]
PrivateKey = KEY
Address = 10.88.88.2/32
DNS = 8.8.8.8, 1.1.1.1
MTU = 1412
[Peer]
PublicKey = KEY
Endpoint = Server_IP:PORT
AllowedIPs = 0.0.0.0/0
PersistentKeepalive = 10

Wireguard日志:可能在断开/连接期间

代码语言:javascript
复制
[Oct10 19:50] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:47581)
[  +0.000007] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:47581)
[  +0.000136] wireguard: wg0: Keypair 44 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 46 created for peer 1
[  +0.134181] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[Oct10 19:52] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:47581)
[  +0.145818] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[ +22.076924] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:47581)
[  +0.000008] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:47581)
[  +0.000135] wireguard: wg0: Keypair 45 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 47 created for peer 1
[  +0.145898] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[Oct10 19:54] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:47581)
[  +0.000007] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:47581)
[  +0.000136] wireguard: wg0: Keypair 46 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 48 created for peer 1
[  +0.114982] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[Oct10 19:55] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[  +0.018194] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:47581)
[Oct10 19:56] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:47581)
[  +0.000008] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:47581)
[  +0.000135] wireguard: wg0: Keypair 47 destroyed for peer 1
[  +0.000003] wireguard: wg0: Keypair 49 created for peer 1
[  +0.216988] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[Oct10 19:57] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:47581)
[  +0.132072] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[  +0.002179] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[Oct10 19:58] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:47581)
[  +0.000007] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:47581)
[  +0.000135] wireguard: wg0: Keypair 48 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 50 created for peer 1
[  +0.204722] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[Oct10 20:00] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:47581)
[  +0.000007] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:47581)
[  +0.000138] wireguard: wg0: Keypair 49 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 51 created for peer 1
[Oct10 20:01] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:47581)
[ +32.141624] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:40667)
[  +0.000007] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:40667)
[  +0.000136] wireguard: wg0: Keypair 50 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 52 created for peer 1
[  +0.130602] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[Oct10 20:03] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:40667)
[  +0.000008] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:40667)
[  +0.000135] wireguard: wg0: Keypair 51 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 53 created for peer 1
[  +0.138579] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[Oct10 20:04] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:40667)
[  +0.032138] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[Oct10 20:05] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[ +31.605691] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:40667)
[  +0.000008] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:40667)
[  +0.000135] wireguard: wg0: Keypair 52 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 54 created for peer 1
[  +0.171474] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[Oct10 20:07] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:40667)
[  +0.000008] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:40667)
[  +0.000137] wireguard: wg0: Keypair 53 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 55 created for peer 1
[  +0.197794] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[Oct10 20:09] wireguard: wg0: Receiving handshake initiation from peer 1 (CLIENT_IP:40667)
[  +0.000007] wireguard: wg0: Sending handshake response to peer 1 (CLIENT_IP:40667)
[  +0.000135] wireguard: wg0: Keypair 54 destroyed for peer 1
[  +0.000002] wireguard: wg0: Keypair 56 created for peer 1
[  +0.199167] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[ +19.727691] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[  +0.173295] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:40667)
[Oct10 20:10] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[  +0.148877] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:40667)
[ +19.819577] wireguard: wg0: Receiving keepalive packet from peer 1 (CLIENT_IP:40667)
[  +0.148292] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:40667)
[Oct10 20:11] wireguard: wg0: Sending keepalive packet to peer 1 (CLIENT_IP:4066)
networking
vpn
wireguard
EN

回答 1

Server Fault用户

回答已采纳

发布于 2022-10-20 22:13:51

听起来客户端就在一个挑剔的NAT后面,它每10分钟重置一次UDP状态。你可能对此无能为力。

然而,从连接的双方发送保持生命可能只会使事情变得更糟,因为它为双方创造了更多的不同步的机会。

从服务器端删除PersistentKeepalive设置--通常应该只在也包括Endpoint设置的连接端使用此设置。

票数 0
EN
页面原文内容由Server Fault提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:

https://serverfault.com/questions/1112755

复制
相关文章

相似问题

领券

腾讯云开发者

扫码关注腾讯云开发者

扫码关注腾讯云开发者

领取腾讯云代金券

热门产品

热门推荐

更多推荐

Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有 

深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 粤公网安备44030502008569号

腾讯云计算(北京)有限责任公司 京ICP证150476号 |  京ICP备11018762号

问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档