Add IPv6 addresses to WireGuard peer output examples

Updated all `wg show` output examples to include IPv6 addresses
in the "allowed ips" field for mesh peers.

Changes:
- All mesh peers now show dual-stack: 192.168.2.X/32, fd42:beef:cafe:2::X/128
- Roaming client output updated to show single gateway peer
- Reflects actual dual-stack WireGuard configuration

This makes the example outputs consistent with the IPv6 implementation
documented earlier in the blog post.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

1 files changed, 17 insertions, 25 deletions

diff --git a/gemfeed/2025-05-11-f3s-kubernetes-with-freebsd-part-5.gmi.tpl b/gemfeed/2025-05-11-f3s-kubernetes-with-freebsd-part-5.gmi.tpl
index a943dde8..573d63a0 100644
--- a/gemfeed/2025-05-11-f3s-kubernetes-with-freebsd-part-5.gmi.tpl
+++ b/gemfeed/2025-05-11-f3s-kubernetes-with-freebsd-part-5.gmi.tpl
@@ -1083,7 +1083,7 @@ interface: wg0
 peer: 8PvGZH1NohHpZPVJyjhctBX9xblsNvYBhpg68FsFcns=
   preshared key: (hidden)
   endpoint: 46.23.94.99:56709
-  allowed ips: 192.168.2.111/32
+  allowed ips: 192.168.2.111/32, fd42:beef:cafe:2::111/128
   latest handshake: 1 minute, 46 seconds ago
   transfer: 124 B received, 1.75 KiB sent
   persistent keepalive: every 25 seconds
@@ -1091,7 +1091,7 @@ peer: 8PvGZH1NohHpZPVJyjhctBX9xblsNvYBhpg68FsFcns=
 peer: Xow+d3qVXgUMk4pcRSQ6Fe+vhYBa3VDyHX/4jrGoKns=
   preshared key: (hidden)
   endpoint: 23.88.35.144:56709
-  allowed ips: 192.168.2.110/32
+  allowed ips: 192.168.2.110/32, fd42:beef:cafe:2::110/128
   latest handshake: 1 minute, 52 seconds ago
   transfer: 124 B received, 1.60 KiB sent
   persistent keepalive: every 25 seconds
@@ -1099,27 +1099,27 @@ peer: Xow+d3qVXgUMk4pcRSQ6Fe+vhYBa3VDyHX/4jrGoKns=
 peer: s3e93XoY7dPUQgLiVO4d8x/SRCFgEew+/wP7+zwgehI=
   preshared key: (hidden)
   endpoint: 192.168.1.120:56709
-  allowed ips: 192.168.2.120/32
+  allowed ips: 192.168.2.120/32, fd42:beef:cafe:2::120/128
 
 peer: 2htXdNcxzpI2FdPDJy4T4VGtm1wpMEQu1AkQHjNY6F8=
   preshared key: (hidden)
   endpoint: 192.168.1.131:56709
-  allowed ips: 192.168.2.131/32
+  allowed ips: 192.168.2.131/32, fd42:beef:cafe:2::131/128
 
 peer: 0Y/H20W8YIbF7DA1sMwMacLI8WS9yG+1/QO7m2oyllg=
   preshared key: (hidden)
   endpoint: 192.168.1.122:56709
-  allowed ips: 192.168.2.122/32
+  allowed ips: 192.168.2.122/32, fd42:beef:cafe:2::122/128
 
 peer: Hhy9kMPOOjChXV2RA5WeCGs+J0FE3rcNPDw/TLSn7i8=
   preshared key: (hidden)
   endpoint: 192.168.1.121:56709
-  allowed ips: 192.168.2.121/32
+  allowed ips: 192.168.2.121/32, fd42:beef:cafe:2::121/128
 
 peer: SlGVsACE1wiaRoGvCR3f7AuHfRS+1jjhS+YwEJ2HvF0=
   preshared key: (hidden)
   endpoint: 192.168.1.132:56709
-  allowed ips: 192.168.2.132/32
+  allowed ips: 192.168.2.132/32, fd42:beef:cafe:2::132/128
 ```
 
 All the hosts are pingable as well, e.g.:
@@ -1200,35 +1200,35 @@ interface: wg0
 peer: 0Y/H20W8YIbF7DA1sMwMacLI8WS9yG+1/QO7m2oyllg=
   preshared key: (hidden)
   endpoint: 192.168.1.122:56709
-  allowed ips: 192.168.2.122/32
+  allowed ips: 192.168.2.122/32, fd42:beef:cafe:2::122/128
   latest handshake: 10 seconds ago
   transfer: 440 B received, 532 B sent
 
 peer: Hhy9kMPOOjChXV2RA5WeCGs+J0FE3rcNPDw/TLSn7i8=
   preshared key: (hidden)
   endpoint: 192.168.1.121:56709
-  allowed ips: 192.168.2.121/32
+  allowed ips: 192.168.2.121/32, fd42:beef:cafe:2::121/128
   latest handshake: 12 seconds ago
   transfer: 440 B received, 564 B sent
 
 peer: s3e93XoY7dPUQgLiVO4d8x/SRCFgEew+/wP7+zwgehI=
   preshared key: (hidden)
   endpoint: 192.168.1.120:56709
-  allowed ips: 192.168.2.120/32
+  allowed ips: 192.168.2.120/32, fd42:beef:cafe:2::120/128
   latest handshake: 14 seconds ago
   transfer: 440 B received, 564 B sent
 
 peer: SlGVsACE1wiaRoGvCR3f7AuHfRS+1jjhS+YwEJ2HvF0=
   preshared key: (hidden)
   endpoint: 192.168.1.132:56709
-  allowed ips: 192.168.2.132/32
+  allowed ips: 192.168.2.132/32, fd42:beef:cafe:2::132/128
   latest handshake: 17 seconds ago
   transfer: 472 B received, 564 B sent
 
 peer: Xow+d3qVXgUMk4pcRSQ6Fe+vhYBa3VDyHX/4jrGoKns=
   preshared key: (hidden)
   endpoint: 23.88.35.144:56709
-  allowed ips: 192.168.2.110/32
+  allowed ips: 192.168.2.110/32, fd42:beef:cafe:2::110/128
   latest handshake: 55 seconds ago
   transfer: 472 B received, 596 B sent
   persistent keepalive: every 25 seconds
@@ -1236,7 +1236,7 @@ peer: Xow+d3qVXgUMk4pcRSQ6Fe+vhYBa3VDyHX/4jrGoKns=
 peer: 8PvGZH1NohHpZPVJyjhctBX9xblsNvYBhpg68FsFcns=
   preshared key: (hidden)
   endpoint: 46.23.94.99:56709
-  allowed ips: 192.168.2.111/32
+  allowed ips: 192.168.2.111/32, fd42:beef:cafe:2::111/128
   latest handshake: 55 seconds ago
   transfer: 472 B received, 596 B sent
   persistent keepalive: every 25 seconds
@@ -1244,7 +1244,7 @@ peer: 8PvGZH1NohHpZPVJyjhctBX9xblsNvYBhpg68FsFcns=
 peer: 2htXdNcxzpI2FdPDJy4T4VGtm1wpMEQu1AkQHjNY6F8=
   preshared key: (hidden)
   endpoint: 192.168.1.131:56709
-  allowed ips: 192.168.2.131/32
+  allowed ips: 192.168.2.131/32, fd42:beef:cafe:2::131/128
 ```
 
 ## Managing Roaming Client Tunnels
@@ -1300,7 +1300,7 @@ earth$ sudo systemctl start wg-quick@wg0-blowfish.service
 # Or start with fishfinger gateway
 earth$ sudo systemctl start wg-quick@wg0-fishfinger.service
 
-# Check tunnel status
+# Check tunnel status (example with blowfish gateway)
 earth$ sudo wg show
 interface: wg0
   public key: Mc1CpSS3rbLN9A2w9c75XugQyXUkGPHKI2iCGbh8DRo=
@@ -1308,20 +1308,12 @@ interface: wg0
   listening port: 56709
   fwmark: 0xca6c
 
-peer: 8PvGZH1NohHpZPVJyjhctBX9xblsNvYBhpg68FsFcns=
-  preshared key: (hidden)
-  endpoint: 46.23.94.99:56709
-  allowed ips: 0.0.0.0/0, ::/0
-  latest handshake: 5 seconds ago
-  transfer: 15.89 KiB received, 32.15 KiB sent
-  persistent keepalive: every 25 seconds
-
 peer: Xow+d3qVXgUMk4pcRSQ6Fe+vhYBa3VDyHX/4jrGoKns=
   preshared key: (hidden)
   endpoint: 23.88.35.144:56709
-  allowed ips: (none)
+  allowed ips: 0.0.0.0/0, ::/0
   latest handshake: 5 seconds ago
-  transfer: 124 B received, 180 B sent
+  transfer: 15.89 KiB received, 32.15 KiB sent
   persistent keepalive: every 25 seconds
 ```