github-personal/firezone
1
0
Fork 0
mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 10:18:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
1222be8fc95ab7791ac054d3ee65bc5c53acec6b
firezone/website
History
Thomas Eizinger 1222be8fc9 fix(snownet): de-multiplex packets based on WG session index (#10109) 
Right now, `snownet` de-multiplexes WireGuard packets based on their
source tuple (IP + port) to the _first_ connection that would like to
handle this traffic. What appears to be happening based on observation
from customer logs is that we sometimes dispatch the traffic to the
wrong connection.

The WireGuard packet format uses session indices to declare, which
session a packet is for. The local session index is selected during the
handshake for a particular session.

By associating the different session indices (we can have up to 8 in
parallel per peer) with our Firezone-specific connection ID, we can
change our de-multiplexing scheme to uses these indices instead of the
source tuple. This is especially important for Gateways as those talk to
multiple different clients.

The session index is a 32-bit integer where the top 24 bits identify the
connection and the bottom 8 bits are used in a round-robin fashion to
identify individual sessions within the connection. Thus, to find the
correct connection, we right-shift the session index of an incoming
packet to arrive back at the 24-bit connection identifier.

In environments with a limited number of ports outside the NAT, a
connection from a new Client may come from a source tuple of a previous
Client. In such a case, we'd dispatch the packets to the wrong
connection, causing the Client to not be able to handshake a tunnel.
2025-08-04 23:35:48 +10:00
..
public
refactor(windows): move valueName to text in .admx (#9796)
2025-07-10 13:52:07 +00:00
src
fix(snownet): de-multiplex packets based on WG session index (#10109)
2025-08-04 23:35:48 +10:00
.gitignore
feat(docs): Show page last updated at for each doc page (#4587)
2024-04-11 14:59:02 +00:00
.gitkeep
jamilbk%feat/stub website in cloud (#1675)
2023-06-22 11:08:28 -06:00
.lycheeignore
ci: fix lychee errors (#9491)
2025-06-09 20:12:37 +00:00
.npmrc
Add updates from master that we want in cloud (#1774)
2023-07-13 02:54:44 +00:00
dev.firezone.firezone.plist
chore(docs): Remove defaults from macOS profile manifest (#9233)
2025-05-26 14:48:11 +00:00
mdx-components.tsx
feat(website): Add Clipboard component and inject into <code> blocks (#5904)
2024-07-18 15:14:26 +00:00
next-sitemap.config.js
fix(docs): Fix Docsearch recordExtractors, sitemap, and cookie banner script load (#3512)
2024-02-01 17:01:26 +00:00
next.config.mjs
fix(website): Fix script load errors and warnings (#5133)
2024-05-26 22:31:56 +00:00
package.json
build(deps): bump fast-xml-parser from 5.2.4 to 5.2.5 in /website (#10082)
2025-08-02 19:26:33 +00:00
pnpm-lock.yaml
build(deps): bump fast-xml-parser from 5.2.4 to 5.2.5 in /website (#10082)
2025-08-02 19:26:33 +00:00
postcss.config.js
Add updates from master that we want in cloud (#1774)
2023-07-13 02:54:44 +00:00
README.md
docs: Update website README.md with .env instructions (#6501)
2024-09-05 16:05:21 +00:00
redirects.js
chore: publish apple-client 1.5.6 (#10106)
2025-08-02 19:43:35 +00:00
tailwind.config.js
chore(website): Cache API responses; cleanup font-manrope redundancy (#7136)
2024-10-23 06:28:20 +00:00
timestamps.sh
docs: DRY up docs footer timestamp; add link to open issue (#5928)
2024-07-21 07:20:00 -07:00
tsconfig.json
Add updates from master that we want in cloud (#1774)
2023-07-13 02:54:44 +00:00

README.md

This is a Next.js project bootstrapped with create-next-app.

Getting Started

First, install dependencies and populate the timestamps.json file:

pnpm setup

Next, create files .env.local and .env.development.local in this directory.

Put this in .env.local:

NEXT_PUBLIC_MIXPANEL_TOKEN=""
NEXT_PUBLIC_GOOGLE_ANALYTICS_ID=""
NEXT_PUBLIC_LINKEDIN_PARTNER_ID=""
FIREZONE_DEPLOYED_SHA=""

And this in .env.development.local:

# Created by Vercel CLI
EDGE_CONFIG=""
FIREZONE_DEPLOYED_SHA=""
SITE_URL=""
VERCEL_DEEP_CLONE=""

After that, make sure to contact the team for their values.

Then, run the development server:

npm run dev
# or
yarn dev
# or
pnpm dev

Open http://localhost:3000 with your browser to see the result.

You can start editing the page by modifying app/page.tsx. The page auto-updates as you edit the file.

Linting

This project uses Prettier to format code and ensure a consistent style. Use the .prettierrc.json in the root of this repo to configure your editor.

Learn More

To learn more about Next.js, take a look at the following resources:

You can check out the Next.js GitHub repository - your feedback and contributions are welcome!

Deploy on Vercel

The easiest way to deploy your Next.js app is to use the Vercel Platform from the creators of Next.js.

Check out our Next.js deployment documentation for more details.

Reference in New Issue View Git Blame Copy Permalink