Wireguard integration #397
emanuele-f
started this conversation in
Ideas
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
PCAPdroid should give users the ability to use a Wireguard tunnel while PCAPdroid is running, with the ability to start/stop the tunnel at runtime.
Here are possible ways to make this possible:
EveryProxy + Wireguard app + work profile
By installing EveryProxy and Wireguard in a work profile, and setting up a SOCKS5 connection to EveryProxy in PCAPdroid, it's currently possible to use PCAPdroid and Wireguard at the same time. However, this not optimal for the following reasons:
Embed Wireguard
As explained in the embedding guide, it's possible to embed Wireguard in PCAPdroid, the approach used by Rethink DNS. The pros are that we can have the best performance and control. The cons are that:
Implement a SOCKS5 server interface in the official Wireguard app
If Wireguard provided a SOCKS5 server interface, PCAPdroid or any other apps could easily integrate with it, and let users use the offical app for any kind of configuration. This is the most flexible approach. Note: there is an open feature request for this in wgtunnel, zaneschepke/wgtunnel#87
Moreover in the future, if mitmproxy implements the ability to connect to an upstream SOCSK5 server (mitmproxy/mitmproxy#211), this would allow users to use the tunnel for decrypted connections as well.
Implement a SOCKS5 server interface in Rethink DNS
If Rethink DNS provided a SOCKS5 server interface, it would be possible for PCAPdroid to use it as a Wireguard and DoT provider. This only works if Rethink DNS is the final app of the chain.
Beta Was this translation helpful? Give feedback.
All reactions