extern/netbird
1
0
Fork 0
mirror of https://github.com/netbirdio/netbird.git synced 2024-11-22 16:13:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

feature: initial implementation of avoiding local proxy if peers are in the same net

Browse Source
This commit is contained in:
braginini 2021-06-17 14:27:33 +02:00
parent 6465e2556a
commit 923cabda9a
3 changed files with 24 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
connection/connection.go
View File

@ -5,6 +5,7 @@ import (
"fmt" "fmt"
ice "github.com/pion/ice/v2" ice "github.com/pion/ice/v2"
log "github.com/sirupsen/logrus" log "github.com/sirupsen/logrus"
"github.com/wiretrustee/wiretrustee/iface"
"golang.zx2c4.com/wireguard/wgctrl/wgtypes" "golang.zx2c4.com/wireguard/wgctrl/wgtypes"
"sync" "sync"
"time" "time"
@ -144,10 +145,20 @@ func (conn *Connection) Open(timeout time.Duration) error {
return err return err
} }
err = conn.wgProxy.Start(remoteConn) pair, err := conn.agent.GetSelectedCandidatePair()
if err != nil { if err != nil {
return err return err
} }
// in case the remote peer is in the local network we don't need a Wireguard proxy, direct communication is possible.
if pair.Local.Type() == ice.CandidateTypeHost && pair.Remote.Type() == ice.CandidateTypeHost {
log.Debugf("remote peer %s is in the local network with an address %s", conn.Config.RemoteWgKey.String(), pair.Remote.Address())
err = conn.wgProxy.StartLocal(fmt.Sprintf("%s:%d", pair.Remote.Address(), iface.WgPort))
} else {
err = conn.wgProxy.Start(remoteConn)
if err != nil {
return err
}
}
log.Infof("opened connection to peer %s", conn.Config.RemoteWgKey.String()) log.Infof("opened connection to peer %s", conn.Config.RemoteWgKey.String())
case <-time.After(timeout): case <-time.After(timeout):
@ -298,7 +309,6 @@ func (conn *Connection) listenOnConnectionStateChanges() error {
} }
log.Infof("will connect to peer %s via a selected connnection candidate pair %s", conn.Config.RemoteWgKey.String(), pair) log.Infof("will connect to peer %s via a selected connnection candidate pair %s", conn.Config.RemoteWgKey.String(), pair)
} else if state == ice.ConnectionStateDisconnected || state == ice.ConnectionStateFailed { } else if state == ice.ConnectionStateDisconnected || state == ice.ConnectionStateFailed {
// todo do we really wanna have a connection restart within connection itself? Think of moving it outside
err := conn.Close() err := conn.Close()
if err != nil { if err != nil {
log.Warnf("error while closing connection to peer %s -> %s", conn.Config.RemoteWgKey.String(), err.Error()) log.Warnf("error while closing connection to peer %s -> %s", conn.Config.RemoteWgKey.String(), err.Error())

9
connection/wgproxy.go
View File

@ -42,6 +42,15 @@ func (p *WgProxy) Close() error {
return nil return nil
} }
func (p *WgProxy) StartLocal(host string) error {
err := iface.UpdatePeer(p.iface, p.remoteKey, p.allowedIps, DefaultWgKeepAlive, host)
if err != nil {
log.Errorf("error while configuring Wireguard peer [%s] %s", p.remoteKey, err.Error())
return err
}
return nil
}
// Start starts a new proxy using the ICE connection // Start starts a new proxy using the ICE connection
func (p *WgProxy) Start(remoteConn *ice.Conn) error { func (p *WgProxy) Start(remoteConn *ice.Conn) error {

3
iface/iface.go
View File

@ -14,6 +14,7 @@ import (
const ( const (
defaultMTU = 1280 defaultMTU = 1280
WgPort = 51820
) )
// Saves tun device object - is it required? // Saves tun device object - is it required?
@ -85,10 +86,12 @@ func Configure(iface string, privateKey string) error {
return err return err
} }
fwmark := 0 fwmark := 0
p := WgPort
cfg := wgtypes.Config{ cfg := wgtypes.Config{
PrivateKey: &key, PrivateKey: &key,
ReplacePeers: false, ReplacePeers: false,
FirewallMark: &fwmark, FirewallMark: &fwmark,
ListenPort: &p,
} }
err = wg.ConfigureDevice(iface, cfg) err = wg.ConfigureDevice(iface, cfg)
if err != nil { if err != nil {