Hacker News new | ask | show | jobs
by omribahumi 1935 days ago
Have you considered using ssh command's ProxyCommand option? It allows you to replace the TCP transport with communication over stdin/stdout.

It could help you replace the TUN with something more cross platform, and possibly with less overhead. You can pass in the hostname using %h, so you can even have virtual DNS.
1 comments
tptacek 1935 days ago
How does that help us here? Without WireGuard, there's no channel with which you can talk to a Fly Hallpass instance, by design.
link
xmodem 1935 days ago
Implement the userspace wireguard client and TCP stack as a ProxyCommand, make something useful for the general case of SSH'ing over wireguard.
link
tptacek 1935 days ago
You can totally do that. The code is public, and for a simple TCP proxy, we're talking, maybe, a couple dozen lines.
link