Just yesterday I was looking at tinc [1] and wireguard was mentioned briefly. I'd like a way to access my home computers via ssh to keep them updated via ansible, even if they are on different networks (parents' laptops, my laptop, my raspberry servers, etc).
Does anyone with more knowledge care to comment on security issues with tinc vs wireguard?
Too bad that you need to use an external droplet for discovering the hosts with this one :(
I cannot comment on tinc, but I use WireGuard to do the same thing as you, and it works brilliantly. It was “easy” to set up and use.
I wrote up what I did for my Raspberry PI server that I have at home [0].
The only other component that may be necessary is Dynamic DNS if you have a dynamic home IP address, or at the very least a way to find out your home IP at any time.
Does anyone with more knowledge care to comment on security issues with tinc vs wireguard?
Too bad that you need to use an external droplet for discovering the hosts with this one :(
1 - http://tinc-vpn.org/