Please rebase on the latest master.

The first commit message says: Added support for WireGuard and VXLAN, is the VXLAN part true?

In the wireguard container log I see the following warning repeated many times, which pollutes the log unnecessarily:

Warning: Using a password with '-a' or '-u' option on the command line interface may not be safe.

What happens if the configured VPN key or ID are wrong?
Let's make sure this is communicated explicitly in the logs.

I see that the Wireguard VPN updater app is not working as expected (on linode), I get the following:

[pid: 106268|app: 0|req: 1296/19080] 10.2.2.78 () {38 vars in 627 bytes} [Mon Jul  4 16:07:11 2022] POST /trigger-update?key=************ => generated 0 bytes in 0 msecs (HTTP/1.1 400) 2 headers in 87 bytes (0 switches on core 0)

In the code I see that vpn_id is a required parameter, but are you sure the current version of OpenWISP Controller sends this in the request?
https://github.com/openwisp/openwisp-controller/blob/c02d5279614935790b51863aff623d525c279f41/openwisp_controller/config/tasks.py#L92-L106

Moreover, the periodic update is also not working. I tried waiting for the cron period to pass but the peers are not updated.

cat /var/spool/cron/crontabs/openwisp
# DO NOT EDIT THIS FILE - edit the master and reinstall.
# (- installed on Mon Jul  4 09:36:32 2022)
# (Cron version -- $Id: crontab.c,v 2.13 1994/01/17 03:20:37 vixie Exp $)
*/5 * * * * bash /opt/openwisp/update_wireguard.sh check_config

I see the crontab there but it doesn't seems like it's working.

If I add a line * * * * * touch /opt/openwisp/testyo it works (it creates the file), if I run the command manually it also works (updates the local wg peers), but the cronjob on its own is not working.

Is it possible to disable the VPN wireguard updater on the public hostname and only use it internally, if not can you change it so that this is possible please?