netbird/client/internal/proxy/noproxy.go

package proxy

import (
	log "github.com/sirupsen/logrus"
	"net"
)

// NoProxy is used just to configure WireGuard without any local proxy in between.
// Used when the WireGuard interface is userspace and uses bind.ICEBind
type NoProxy struct {
	config Config
}

// NewNoProxy creates a new NoProxy with a provided config
func NewNoProxy(config Config) *NoProxy {
	return &NoProxy{config: config}
}

// Close removes peer from the WireGuard interface
func (p *NoProxy) Close() error {
	err := p.config.WgInterface.RemovePeer(p.config.RemoteKey)
	if err != nil {
		return err
	}
	return nil
}

// Start just updates WireGuard peer with the remote address
func (p *NoProxy) Start(remoteConn net.Conn) error {

	log.Debugf("using NoProxy to connect to peer %s at %s", p.config.RemoteKey, remoteConn.RemoteAddr().String())
	addr, err := net.ResolveUDPAddr("udp", remoteConn.RemoteAddr().String())
	if err != nil {
		return err
	}
	return p.config.WgInterface.UpdatePeer(p.config.RemoteKey, p.config.AllowedIps, DefaultWgKeepAlive,
		addr, p.config.PreSharedKey)
}

func (p *NoProxy) Type() Type {
	return TypeNoProxy
}
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`package proxy`

			`import (`
			`log "github.com/sirupsen/logrus"`
			`"net"`
			`)`

Bind implementation (#779) This PR adds supports for the WireGuard userspace implementation using Bind interface from wireguard-go. The newly introduced ICEBind struct implements Bind with UDPMux-based structs from pion/ice to handle hole punching using ICE. The core implementation was taken from StdBind of wireguard-go. The result is a single WireGuard port that is used for host and server reflexive candidates. Relay candidates are still handled separately and will be integrated in the following PRs. ICEBind checks the incoming packets for being STUN or WireGuard ones and routes them to UDPMux (to handle hole punching) or to WireGuard respectively. 2023-04-13 17:00:01 +02:00			`// NoProxy is used just to configure WireGuard without any local proxy in between.`
			`// Used when the WireGuard interface is userspace and uses bind.ICEBind`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`type NoProxy struct {`
			`config Config`
			`}`

Bind implementation (#779) This PR adds supports for the WireGuard userspace implementation using Bind interface from wireguard-go. The newly introduced ICEBind struct implements Bind with UDPMux-based structs from pion/ice to handle hole punching using ICE. The core implementation was taken from StdBind of wireguard-go. The result is a single WireGuard port that is used for host and server reflexive candidates. Relay candidates are still handled separately and will be integrated in the following PRs. ICEBind checks the incoming packets for being STUN or WireGuard ones and routes them to UDPMux (to handle hole punching) or to WireGuard respectively. 2023-04-13 17:00:01 +02:00			`// NewNoProxy creates a new NoProxy with a provided config`
			`func NewNoProxy(config Config) *NoProxy {`
			`return &NoProxy{config: config}`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`}`

Bind implementation (#779) This PR adds supports for the WireGuard userspace implementation using Bind interface from wireguard-go. The newly introduced ICEBind struct implements Bind with UDPMux-based structs from pion/ice to handle hole punching using ICE. The core implementation was taken from StdBind of wireguard-go. The result is a single WireGuard port that is used for host and server reflexive candidates. Relay candidates are still handled separately and will be integrated in the following PRs. ICEBind checks the incoming packets for being STUN or WireGuard ones and routes them to UDPMux (to handle hole punching) or to WireGuard respectively. 2023-04-13 17:00:01 +02:00			`// Close removes peer from the WireGuard interface`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`func (p *NoProxy) Close() error {`
Remove Wireguard peer in no-proxy mode on Close (#247) When connection is closed the wireguard peer should be gone. It wasn't happening until this fix. 2022-03-02 14:50:22 +01:00			`err := p.config.WgInterface.RemovePeer(p.config.RemoteKey)`
			`if err != nil {`
			`return err`
			`}`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`return nil`
			`}`

Bind implementation (#779) This PR adds supports for the WireGuard userspace implementation using Bind interface from wireguard-go. The newly introduced ICEBind struct implements Bind with UDPMux-based structs from pion/ice to handle hole punching using ICE. The core implementation was taken from StdBind of wireguard-go. The result is a single WireGuard port that is used for host and server reflexive candidates. Relay candidates are still handled separately and will be integrated in the following PRs. ICEBind checks the incoming packets for being STUN or WireGuard ones and routes them to UDPMux (to handle hole punching) or to WireGuard respectively. 2023-04-13 17:00:01 +02:00			`// Start just updates WireGuard peer with the remote address`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`func (p *NoProxy) Start(remoteConn net.Conn) error {`

Bind implementation (#779) This PR adds supports for the WireGuard userspace implementation using Bind interface from wireguard-go. The newly introduced ICEBind struct implements Bind with UDPMux-based structs from pion/ice to handle hole punching using ICE. The core implementation was taken from StdBind of wireguard-go. The result is a single WireGuard port that is used for host and server reflexive candidates. Relay candidates are still handled separately and will be integrated in the following PRs. ICEBind checks the incoming packets for being STUN or WireGuard ones and routes them to UDPMux (to handle hole punching) or to WireGuard respectively. 2023-04-13 17:00:01 +02:00			`log.Debugf("using NoProxy to connect to peer %s at %s", p.config.RemoteKey, remoteConn.RemoteAddr().String())`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`addr, err := net.ResolveUDPAddr("udp", remoteConn.RemoteAddr().String())`
			`if err != nil {`
			`return err`
			`}`
Bind implementation (#779) This PR adds supports for the WireGuard userspace implementation using Bind interface from wireguard-go. The newly introduced ICEBind struct implements Bind with UDPMux-based structs from pion/ice to handle hole punching using ICE. The core implementation was taken from StdBind of wireguard-go. The result is a single WireGuard port that is used for host and server reflexive candidates. Relay candidates are still handled separately and will be integrated in the following PRs. ICEBind checks the incoming packets for being STUN or WireGuard ones and routes them to UDPMux (to handle hole punching) or to WireGuard respectively. 2023-04-13 17:00:01 +02:00			`return p.config.WgInterface.UpdatePeer(p.config.RemoteKey, p.config.AllowedIps, DefaultWgKeepAlive,`
Support no-proxy mode connection mode (#245) When one of the peers has a static public host IP or both peers are in the same local network we establish a direct Wireguard connection bypassing proxy usage. This helps reduce FD usage and improves performance. 2022-03-01 14:07:33 +01:00			`addr, p.config.PreSharedKey)`
			`}`

			`func (p *NoProxy) Type() Type {`
			`return TypeNoProxy`
			`}`