Posts by graza

I was thinking about this further and for my use case (remote access to my tvheadend server), I have created a short systemd service script that just configures Wireguard directly. This leaves the DNS resolution to Wireguard entirely and adds routes as directed by the allowed-ips setting.

One of Wireguard's features is the way it handles roaming. This means that the (supposedly) either endpoint can change IP addresses and it all just works because of its Cryptokey Routing meaning it uses the cryptographic keys to get the packets where they need to be. There's a section on the website about it here: Built-in Roaming

I'm not 100% sure this would work through NAT though. I tried adding a listen-port to line 3 below and it just broke everything.

#!/bin/bash
ip link add dev wg0 type wireguard
wg set wg0 private-key /storage/.config/my_wireguard/private_key peer SERVER_PUBLIC_KEY endpoint SERVER_DNS_ADDRESS:SERVER_LISTEN_PORT allowed-ips 192.168.5.0/24 persistent-keepalive 25
ip addr add dev wg0 192.168.5.6/24
ip link set up dev wg0

The systemd service file is one I copied from the wireguard.service.sample.

[Unit]
Description=WireGuard VPN Service
After=network-online.target nss-lookup.target connman-vpn.service time-sync.target
Wants=network-online.target nss-lookup.target connman-vpn.service time-sync.target


[Service]
Type=oneshot
RemainAfterExit=yes
ExecStart=/storage/.config/my_wireguard/wg0_up
ExecStop=ip link del wg0


[Install]
WantedBy=multi-user.target

I also configured connman to ignore the wg0 interface in its blacklist:

# List of blacklisted network interfaces separated by ",".
# Found interfaces will be compared to the list and will
# not be handled by ConnMan, if their first characters
# match any of the list entries. Default value is
# vmnet,vboxnet,virbr,ifb,ve-,vb-.
NetworkInterfaceBlacklist = vmnet,vboxnet,virbr,ifb,docker,veth,zt,ve-,vb-,wg0

Anyway I hope this helps someone.

Thanks Da Flex I think it helped a bit but it didn't fix it fully. The thread you linked was to another called "Choppy video NHL addon" where you suggested the same thing. Was there another with more suggestions? I tried a few different deinterlace settings (apart from Auto and None) with no luck.

It's only a UHD demo channel from Astra 28E, so it's not a show stopper. But it would be nice to sort this. Should I post some more diagnostic information? I was thinking to record a snippet of the stream and try to "identify" in ffmpeg. Maybe repackage it into a different container (e.g. mkv instead of the transport/program stream that comes out of tvheadend)?

Quote from eredi93

I _think_ the issue might be with ConnMan not setting the route for the Wireguard server IP, I noticed that replacing the domain name with the IP added this route

Thanks, this helped me. The way connman is managing the route tables just doesn't look right. Wireguard's AllowedIPs setting and the connman Networks setting are the same thing - entries to be added to the route table - and for my needs I only want it to add the entry to the VPN server (where my tvheadend lives).

Hi there! My first post here, I very much appreciate all the dedication and hard work that goes into this. I've been a long time user of OpenELEC / OSMC on RPi3. I recently upgraded to an RPi4 and chose the free-er option from you guys.

Part of the reason for the upgrade was to try out the 4K stream I have on my satellite. I live in Ireland and use the Freesat DVB-S service. This gives me all the UK channels plus a demo channel called UHD1 - Astra UHD Demo. Unfortunately it doesn't play very well.

• The picture looks great but immediately starts to lag behind the sound.
• There isn't a lot of stuttering etc, but there are some odd things like a black frame a couple of seconds after playback starts and it does seem to be running slow.
• When I press pause, the sound stops but the picture keeps going until it catches up.
• If I let it play, things eventually break down with buffering and interruptions to sound.

A bit about my setup:

• LibreELEC 9.2.6 running on a 2GB RPi4
• Wired network connection. Speed Tester addon reports 195Mbps.
• TVHeadend running on a separate server (HP Gen7 Microserver)
• Satellite stream coming from a Grundig GSS.Box Sat>IP tuner/server
• 42" Panasonic 1080p TV (about 8 years old)

Any ideas?

Thanks & Kind Regards,

Graham