With Wireguard, authentication is carried out using keys that are generated when a tunnel is set up. VPN tunnels can therefore be set up quickly and securely even without a user login. The configured tunnels can be selected and activated or deactivated "by click" via the WireGuard graphical user interface.

It is not possible to use the same key on several devices at the same time. To avoid errors, please create separate tunnel configurations for each device.

Windows:

• The WireGuard interface can only be started if the user belongs to the Administrators group.

• For Windows users, WireGuard starts automatically after login. If the VPN tunnel is no longer required, it should be deactivated again. In particular, users who regularly switch between working from home and working on site should remember to activate WireGuard in the home office and deactivate it again when working on site. The WireGuard VPN also works within the network at RPTU, but then there may be no access to local resources (e.g. printers that are only shared with the respective workgroup).

Linux:

• The use of "split-tunnel" configurations for IPv6 does not currently work correctly (for details, see Setup under Linux). It is therefore recommended to use "full tunnel" configurations under Linux.