Less overhead and most importantly, if you don’t get a direct connection your throughput is screwed. Unless you host your own custom DERP server which I do as well.
It limited transfers pretty hard for my usage
No middlemen exist in a personal setup though, don’t know why I would prefer to have my traffic route through a third party when it could just go to my home instead
I didn’t know the server sw was a standard option on Ubuntu, good to know thanks!
It does there are several models with different frequency bands.
Eh, even professional people derp out all the time, if you’ve ever worked on a shared services concentrator doing a bunch of VPNs, even engineering peeps mess up phases, ciphers, lifetime, setting IKEv1 to aggressive, you name it.
To me wireguard is superior for this use case being stateless and more flexible, you don’t have to juggle things like your peer IP changing and it’s literally two text files to configure both ends.
I paid 50 and the guy remote connected to my computer and did it himself
That is the issue, I think it’s just that. The guide says it should work but that isn’t necessarily true. Some others have gotten it to work but I couldn’t figure it out. When I turn on the router as an exit node and even after adding subnets it still doesn’t work. I’m lucky enough to have a public Internet address and port forwarding allowed so I’ll do wireguard when I buy another server router.
I also heard that they are using the GO version of WireGuard which isn’t as optimized/up to date as the regular WireGuard kernel.
I have a symmetric fiber connection at home. When I’m traveling I’m not getting remotely close to that speed. For example at a hotel I’m happy to get 50/25Mbps. Processing overhead and latency aren’t a concern when you’re on the road and need to tunnel say back to the US for DRM reasons.
Because setting up WG across multiple devices with multiple OSes and multiple users is a PITA and because I get lots of administrative conveniences. Setting up vanilla WG is a good learning experience but once you’ve done it a few times it’s not a good use of time at least for OPs question.
Yup, just sudo apt install wireguard and it will install it together with the wireguard-tools (wg, wg-quick etc). Config file and server keys go into /etc/wireguard
Cheers!
Yeah, Wireguard should be much easier to setup anyway. Should only take minutes. The only potential challenge could be port forwarding, but on Xfinity for example it takes literally seconds with their mobile app.
Just be aware if using the default 51820 port, there is a possibility it could be blocked by the local firewall wherever you travel to receive internet. In which case you’d be screwed unless you changed the port (to 51821, for example) and it started working.
This is 100% not going to matter for personal use cases where as I said above, you’re lucky to get 50/25 bandwidth if that when tunneling back home.
Ah perfect. Well if your hotel is that slow then you’re not going to get as fast as your home connection. Understand?
Yes, do you? The slow remote connections are precisely why a DERP server, small amount of overhead and less throughout are not relevant unless TailScale is throttling below say 50/25 which I’ve never seen. Your use case may rely on those optimizations but mine never does so I’m happy to trade convenience for more complexity that I’ll never need.
To be honest, I have ONLY seen throttling below 10 Mbps from DERP. It’s probably because I get routes to NYC which is likely the most popular.