async peer status store for sqlite

2026-04-26 20:26:39 +00:00 · 2024-01-17 02:29:03 +01:00
221 changed files with 1992 additions and 13932 deletions
--- a/.github/ISSUE_TEMPLATE/bug-issue-report.md
+++ b/.github/ISSUE_TEMPLATE/bug-issue-report.md
@@ -2,17 +2,15 @@
 name: Bug/Issue report
 about: Create a report to help us improve
 title: ''
-labels: ['triage-needed']
+labels: ''
 assignees: ''
 ---
 **Describe the problem**
 A clear and concise description of what the problem is.
 **To Reproduce**
 Steps to reproduce the behavior:
 1. Go to '...'
 2. Click on '....'
@@ -20,25 +18,13 @@ Steps to reproduce the behavior:
 4. See error
 **Expected behavior**
 A clear and concise description of what you expected to happen.
 **Are you using NetBird Cloud?**
 Please specify whether you use NetBird Cloud or self-host NetBird's control plane.
 **NetBird version**
 `netbird version`
 **NetBird status -d output:**
-
+If applicable, add the output of the `netbird status -d` command
 If applicable, add the `netbird status -d' command output.
 **Screenshots**
 If applicable, add screenshots to help explain your problem.
 **Additional context**
 Add any other context about the problem here.
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@@ -2,7 +2,7 @@
 name: Feature request
 about: Suggest an idea for this project
 title: ''
-labels: ['feature-request']
+labels: ''
 assignees: ''
 ---
--- a/.github/workflows/android-build-validation.yml
+++ b/.github/workflows/android-build-validation.yml
@@ -1,4 +1,4 @@
-name: Mobile build validation
+name: Android build validation
 on:
  push:
@@ -11,7 +11,7 @@ concurrency:
  cancel-in-progress: true
 jobs:
-  android_build:
+  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout repository
@@ -41,25 +41,8 @@ jobs:
        run: go install golang.org/x/mobile/cmd/gomobile@v0.0.0-20230531173138-3c911d8e3eda
      - name: gomobile init
        run: gomobile init
-      - name: build android netbird lib
+      - name: build android nebtird lib
        run: PATH=$PATH:$(go env GOPATH) gomobile bind -o $GITHUB_WORKSPACE/netbird.aar -javapkg=io.netbird.gomobile -ldflags="-X golang.zx2c4.com/wireguard/ipc.socketDirectory=/data/data/io.netbird.client/cache/wireguard -X github.com/netbirdio/netbird/version.version=buildtest"  $GITHUB_WORKSPACE/client/android
        env:
          CGO_ENABLED: 0
          ANDROID_NDK_HOME: /usr/local/lib/android/sdk/ndk/23.1.7779620
  ios_build:
    runs-on: macos-latest
    steps:
      - name: Checkout repository
        uses: actions/checkout@v3
      - name: Install Go
        uses: actions/setup-go@v4
        with:
          go-version: "1.21.x"
      - name: install gomobile
        run: go install golang.org/x/mobile/cmd/gomobile@v0.0.0-20230531173138-3c911d8e3eda
      - name: gomobile init
        run: gomobile init
      - name: build iOS netbird lib
        run: PATH=$PATH:$(go env GOPATH) gomobile bind -target=ios -bundleid=io.netbird.framework -ldflags="-X github.com/netbirdio/netbird/version.version=buildtest" -o $GITHUB_WORKSPACE/NetBirdSDK.xcframework $GITHUB_WORKSPACE/client/ios/NetBirdSDK
        env:
          CGO_ENABLED: 0
--- a/.github/workflows/golang-test-darwin.yml
+++ b/.github/workflows/golang-test-darwin.yml
@@ -35,8 +35,5 @@ jobs:
      - name: Install modules
        run: go mod tidy
      - name: check git status
        run: git --no-pager diff --exit-code
      - name: Test
-        run: NETBIRD_STORE_ENGINE=${{ matrix.store }} go test -exec 'sudo --preserve-env=CI,NETBIRD_STORE_ENGINE' -timeout 5m -p 1 ./...
+        run: NETBIRD_STORE_ENGINE=${{ matrix.store }} go test -exec 'sudo --preserve-env=CI' -timeout 5m -p 1 ./...
--- a/.github/workflows/golang-test-linux.yml
+++ b/.github/workflows/golang-test-linux.yml
@@ -41,11 +41,8 @@ jobs:
      - name: Install modules
        run: go mod tidy
      - name: check git status
        run: git --no-pager diff --exit-code
      - name: Test
-        run: CGO_ENABLED=1 GOARCH=${{ matrix.arch }} NETBIRD_STORE_ENGINE=${{ matrix.store }} go test -exec 'sudo --preserve-env=CI,NETBIRD_STORE_ENGINE' -timeout 5m -p 1 ./...
+        run: CGO_ENABLED=1 GOARCH=${{ matrix.arch }} NETBIRD_STORE_ENGINE=${{ matrix.store }} go test -exec 'sudo --preserve-env=CI' -timeout 5m -p 1 ./...
  test_client_on_docker:
    runs-on: ubuntu-20.04
@@ -72,9 +69,6 @@ jobs:
      - name: Install modules
        run: go mod tidy
      - name: check git status
        run: git --no-pager diff --exit-code
      - name: Generate Iface Test bin
        run: CGO_ENABLED=0 go test -c -o iface-testing.bin ./iface/
--- a/.github/workflows/golang-test-windows.yml
+++ b/.github/workflows/golang-test-windows.yml
@@ -44,7 +44,6 @@ jobs:
      - run: PsExec64 -s -w ${{ github.workspace }} C:\hostedtoolcache\windows\go\${{ steps.go.outputs.go-version }}\x64\bin\go.exe env -w GOMODCACHE=C:\Users\runneradmin\go\pkg\mod
      - run: PsExec64 -s -w ${{ github.workspace }} C:\hostedtoolcache\windows\go\${{ steps.go.outputs.go-version }}\x64\bin\go.exe env -w GOCACHE=C:\Users\runneradmin\AppData\Local\go-build
      - run: "[Environment]::SetEnvironmentVariable('NETBIRD_STORE_ENGINE', 'jsonfile', 'Machine')"
      - name: test
        run: PsExec64 -s -w ${{ github.workspace }} cmd.exe /c "C:\hostedtoolcache\windows\go\${{ steps.go.outputs.go-version }}\x64\bin\go.exe test -timeout 5m -p 1 ./... > test-out.txt 2>&1"
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -190,9 +190,6 @@ jobs:
      -
        name: Install modules
        run: go mod tidy
      - 
        name: check git status
        run: git --no-pager diff --exit-code
      -
        name: Run GoReleaser
        id: goreleaser
--- a/.github/workflows/test-infrastructure-files.yml
+++ b/.github/workflows/test-infrastructure-files.yml
@@ -127,9 +127,6 @@ jobs:
      - name: Install modules
        run: go mod tidy
      - name: check git status
        run: git --no-pager diff --exit-code
      - name: Build management binary
        working-directory: management
        run: CGO_ENABLED=1 go build -o netbird-mgmt main.go
@@ -162,13 +159,6 @@ jobs:
          test $count -eq 4
        working-directory: infrastructure_files/artifacts
      - name: test geolocation databases
        working-directory: infrastructure_files/artifacts
        run: |
          sleep 30
          docker compose exec management ls -l /var/lib/netbird/ | grep -i GeoLite2-City.mmdb
          docker compose exec management ls -l /var/lib/netbird/ | grep -i geonames.db
  test-getting-started-script:
    runs-on: ubuntu-latest
    steps:
@@ -196,16 +186,3 @@ jobs:
        run: test -f zitadel.env
      - name: test dashboard.env file gen
        run: test -f dashboard.env
  test-download-geolite2-script:
    runs-on: ubuntu-latest
    steps:
      - name: Install jq
        run: sudo apt-get update && sudo apt-get install -y unzip sqlite3
      - name: Checkout code
        uses: actions/checkout@v3
      - name: test script
        run: bash -x infrastructure_files/download-geolite2.sh
      - name: test mmdb file exists
        run: test -f GeoLite2-City.mmdb
      - name: test geonames file exists
        run: test -f geonames.db
--- a/.gitignore
+++ b/.gitignore
@@ -29,4 +29,4 @@ infrastructure_files/setup.env
 infrastructure_files/setup-*.env
 .vscode
 .DS_Store
-GeoLite2-City*
+*.db
--- a/.golangci.yaml
+++ b/.golangci.yaml
@@ -63,14 +63,6 @@ linters-settings:
    enable:
      - nilness
  revive:
    rules:
      - name: exported
        severity: warning
        disabled: false
        arguments:
          - "checkPrivateReceivers"
          - "sayRepetitiveInsteadOfStutters"
  tenv:
    # The option `all` will run against whole test files (`_test.go`) regardless of method/function signatures.
    # Otherwise, only methods that take `*testing.T`, `*testing.B`, and `testing.TB` as arguments are checked.
@@ -101,7 +93,6 @@ linters:
    - nilerr # finds the code that returns nil even if it checks that the error is not nil
    - nilnil # checks that there is no simultaneous return of nil error and an invalid value
    - predeclared # predeclared finds code that shadows one of Go's predeclared identifiers
    - revive # Fast, configurable, extensible, flexible, and beautiful linter for Go. Drop-in replacement of golint.
    - sqlclosecheck # checks that sql.Rows and sql.Stmt are closed
    - thelper # thelper detects Go test helpers without t.Helper() call and checks the consistency of test helpers.
    - wastedassign # wastedassign finds wasted assignment statements
--- a/.goreleaser_ui.yaml
+++ b/.goreleaser_ui.yaml
@@ -54,7 +54,7 @@ nfpms:
    contents:
      - src: client/ui/netbird.desktop
        dst: /usr/share/applications/netbird.desktop
-      - src: client/ui/netbird-systemtray-connected.png
+      - src: client/ui/netbird-systemtray-default.png
        dst: /usr/share/pixmaps/netbird.png
    dependencies:
      - netbird
@@ -71,7 +71,7 @@ nfpms:
    contents:
      - src: client/ui/netbird.desktop
        dst: /usr/share/applications/netbird.desktop
-      - src: client/ui/netbird-systemtray-connected.png
+      - src: client/ui/netbird-systemtray-default.png
        dst: /usr/share/pixmaps/netbird.png
    dependencies:
      - netbird
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -274,8 +274,6 @@ go test -exec sudo ./...
 ```
 > On Windows use a powershell with administrator privileges
 > Non-GTK environments will need the `libayatana-appindicator3-dev` (debian/ubuntu) package installed
 ## Checklist before submitting a PR
 As a critical network service and open-source project, we must enforce a few things before submitting the pull-requests:
 - Keep functions as simple as possible, with a single purpose
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
 <p align="center">
- <strong>:hatching_chick: New Release! Device Posture Checks.</strong>
+ <strong>:hatching_chick: New Release! Self-hosting in under 5 min.</strong>
-  <a href="https://docs.netbird.io/how-to/manage-posture-checks">
+  <a href="https://github.com/netbirdio/netbird#quickstart-with-self-hosted-netbird">
       Learn more
     </a>   
 </p>
@@ -42,22 +42,25 @@
 **Secure.** NetBird enables secure remote access by applying granular access policies, while allowing you to manage them intuitively from a single place. Works universally on any infrastructure.
-### Open-Source Network Security in a Single Platform
+### Secure peer-to-peer VPN with SSO and MFA in minutes
-![download (2)](https://github.com/netbirdio/netbird/assets/700848/16210ac2-7265-44c1-8d4e-8fae85534dac)
+https://user-images.githubusercontent.com/700848/197345890-2e2cded5-7b7a-436f-a444-94e80dd24f46.mov
 ### Key features
-| Connectivity                                                                                                                 | Management                                                                                               | Security                                                                                                                              | Automation                                                                                                                               | Platforms                                                                               |
+| Connectivity                             	                                                                                      | Management                                 	                             | Automation                                    	                            | Platforms    	                        |
-|------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------|
+|---------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------|----------------------------------------------------------------------------|---------------------------------------|
-| <ul><li> - \[x] Kernel WireGuard </ul></li>                                                                                  | <ul><li> - \[x] [Admin Web UI](https://github.com/netbirdio/dashboard) </ul></li>                        | <ul><li> - \[x] [SSO & MFA support](https://docs.netbird.io/how-to/installation#running-net-bird-with-sso-login) </ul></li>           | <ul><li> - \[x] [Public API](https://docs.netbird.io/api) </ul></li>                                                                     | <ul><li> - \[x] Linux </ul></li>                                                        |
+| <ul><li> - \[x] Kernel WireGuard </ul></li>                   	                                                                 | <ul><li> - \[x] [Admin Web UI](https://github.com/netbirdio/dashboard) </ul></li>                           	      | <ul><li> - \[x] [Public API](https://docs.netbird.io/api) </ul></li>                                	     | <ul><li> - \[x] Linux </ul></li>    	 |
-| <ul><li> - \[x] Peer-to-peer connections </ul></li>                                                                          | <ul><li> - \[x] Auto peer discovery and configuration </ul></li>                                         | <ul><li> - \[x] [Access control - groups & rules](https://docs.netbird.io/how-to/manage-network-access) </ul></li>                    | <ul><li> - \[x] [Setup keys for bulk network provisioning](https://docs.netbird.io/how-to/register-machines-using-setup-keys) </ul></li> | <ul><li> - \[x] Mac </ul></li>                                                          |
+| <ul><li> - \[x] Peer-to-peer connections </ul></li>             	                                                               | <ul><li> - \[x] Auto peer discovery and configuration </ul></li>  	      | <ul><li> - \[x] [Setup keys for bulk network provisioning](https://docs.netbird.io/how-to/register-machines-using-setup-keys) </ul></li>  	     | <ul><li> - \[x] Mac </ul></li>      	 |
-| <ul><li> - \[x] Connection relay fallback </ul></li>                                                                         | <ul><li> - \[x] [IdP integrations](https://docs.netbird.io/selfhosted/identity-providers) </ul></li>     | <ul><li> - \[x] [Activity logging](https://docs.netbird.io/how-to/monitor-system-and-network-activity) </ul></li>                     | <ul><li> - \[x] [Self-hosting quickstart script](https://docs.netbird.io/selfhosted/selfhosted-quickstart) </ul></li>                    | <ul><li> - \[x] Windows </ul></li>                                                      |
+| <ul><li> - \[x] Peer-to-peer encryption </ul></li>              	                                                               | <ul><li> - \[x] [IdP integrations](https://docs.netbird.io/selfhosted/identity-providers) </ul></li>                       	      | <ul><li> - \[x] [Self-hosting quickstart script](https://docs.netbird.io/selfhosted/selfhosted-quickstart) </ul></li>              	 | <ul><li> - \[x] Windows </ul></li>  	 |
-| <ul><li> - \[x] [Routes to external networks](https://docs.netbird.io/how-to/routing-traffic-to-private-networks) </ul></li> | <ul><li> - \[x] [Private DNS](https://docs.netbird.io/how-to/manage-dns-in-your-network) </ul></li>      | <ul><li> - \[x] [Device posture checks](https://docs.netbird.io/how-to/manage-posture-checks) </ul></li>                              | <ul><li> - \[x] IdP groups sync with JWT </ul></li>                                                                                      | <ul><li> - \[x] Android </ul></li>                                                      |
+| <ul><li> - \[x] Connection relay fallback </ul></li>            	                                                               | <ul><li> - \[x] [SSO & MFA support](https://docs.netbird.io/how-to/installation#running-net-bird-with-sso-login) </ul></li>                      	      | <ul><li> - \[x] IdP groups sync with JWT </ul></li> 	                      | <ul><li> - \[x] Android </ul></li>  	 |
-| <ul><li> - \[x] NAT traversal with BPF </ul></li>                                                                            | <ul><li> - \[x] [Multiuser support](https://docs.netbird.io/how-to/add-users-to-your-network) </ul></li> | <ul><li> -  \[x] Peer-to-peer encryption </ul></li>                                                                                   |                                                                                                                                          | <ul><li> - \[x] iOS </ul></li>                                                          |
+| <ul><li> - \[x] [Routes to external networks](https://docs.netbird.io/how-to/routing-traffic-to-private-networks) </ul></li>  	 | <ul><li> - \[x] [Access control - groups & rules](https://docs.netbird.io/how-to/manage-network-access) </ul></li>      	        | 	                                                                          | <ul><li> - \[x] iOS </ul></li>      	 |
-|                                                                                                                              |                                                                                                          | <ul><li> - \[x] [Quantum-resistance with Rosenpass](https://netbird.io/knowledge-hub/the-first-quantum-resistant-mesh-vpn) </ul></li> |                                                                                                                                          | <ul><li> - \[x] OpenWRT </ul></li>                                                      |
+| <ul><li> - \[x] NAT traversal with BPF </ul></li>                                                                               | <ul><li> - \[x] [Private DNS](https://docs.netbird.io/how-to/manage-dns-in-your-network) </ul></li>                            	      | 	                                                                          | <ul><li> - \[x] Docker </ul></li>   	 |
-|                                                                                                                              |                                                                                                          | <ui><li> - \[x] [Periodic re-authentication](https://docs.netbird.io/how-to/enforce-periodic-user-authentication)</ul></li>           |                                                                                                                                          | <ul><li> - \[x] [Serverless](https://docs.netbird.io/how-to/netbird-on-faas) </ul></li> |
+| <ul><li> - \[x] Post-quantum-secure connection through [Rosenpass](https://rosenpass.eu) </ul></li>                             | <ul><li> - \[x] [Multiuser support](https://docs.netbird.io/how-to/add-users-to-your-network) </ul></li>                      	      | 	                                                                          | <ul><li> - \[x] OpenWRT </ul></li>  	 |
-|                                                                                                                              |                                                                                                          |                                                                                                                                       |                                                                                                                                          | <ul><li> - \[x] Docker </ul></li>                                                       |
+| 	                                                                                                                               | <ul><li> - \[x] [Activity logging](https://docs.netbird.io/how-to/monitor-system-and-network-activity) </ul></li>                       	      | 	                                                                          | 	                                     |
 | 	                                                                                                                               | <ul><li> - \[x] SSH access management </ul></li>                       	 | 	                                                                          | 	                                     |
 ### Quickstart with NetBird Cloud
 - Download and install NetBird at [https://app.netbird.io/install](https://app.netbird.io/install)
@@ -106,8 +109,8 @@ export NETBIRD_DOMAIN=netbird.example.com; curl -fsSL https://github.com/netbird
 See a complete [architecture overview](https://docs.netbird.io/about-netbird/how-netbird-works#architecture) for details.
 ### Community projects
 -  [NetBird on OpenWRT](https://github.com/messense/openwrt-netbird)
 -  [NetBird installer script](https://github.com/physk/netbird-installer)
 -  [NetBird ansible collection by Dominion Solutions](https://galaxy.ansible.com/ui/repo/published/dominion_solutions/netbird/)
 **Note**: The `main` branch may be in an *unstable or even broken state* during development.
 For stable versions, see [releases](https://github.com/netbirdio/netbird/releases).
--- a/client/android/client.go
+++ b/client/android/client.go
@@ -79,7 +79,6 @@ func (c *Client) Run(urlOpener URLOpener, dns *DNSList, dnsReadyListener DnsRead
 		return err
 	}
 	c.recorder.UpdateManagementAddress(cfg.ManagementURL.String())
 	c.recorder.UpdateRosenpass(cfg.RosenpassEnabled, cfg.RosenpassPermissive)
 	var ctx context.Context
 	//nolint
@@ -110,7 +109,6 @@ func (c *Client) RunWithoutLogin(dns *DNSList, dnsReadyListener DnsReadyListener
 		return err
 	}
 	c.recorder.UpdateManagementAddress(cfg.ManagementURL.String())
 	c.recorder.UpdateRosenpass(cfg.RosenpassEnabled, cfg.RosenpassPermissive)
 	var ctx context.Context
 	//nolint
@@ -141,11 +139,6 @@ func (c *Client) SetTraceLogLevel() {
 	log.SetLevel(log.TraceLevel)
 }
 // SetInfoLogLevel configure the logger to info level
 func (c *Client) SetInfoLogLevel() {
 	log.SetLevel(log.InfoLevel)
 }
 // PeersList return with the list of the PeerInfos
 func (c *Client) PeersList() *PeerInfoArray {
--- a/client/cmd/login.go
+++ b/client/cmd/login.go
@@ -82,15 +82,12 @@ var loginCmd = &cobra.Command{
 		loginRequest := proto.LoginRequest{
 			SetupKey:             setupKey,
 			PreSharedKey:         preSharedKey,
 			ManagementUrl:        managementURL,
 			IsLinuxDesktopClient: isLinuxRunningDesktop(),
 			Hostname:             hostName,
 		}
 		if rootCmd.PersistentFlags().Changed(preSharedKeyFlag) {
 			loginRequest.OptionalPreSharedKey = &preSharedKey
 		}
 		var loginErr error
 		var loginResp *proto.LoginResponse
--- a/client/cmd/root.go
+++ b/client/cmd/root.go
@@ -25,15 +25,12 @@ import (
 )
 const (
-	externalIPMapFlag       = "external-ip-map"
+	externalIPMapFlag   = "external-ip-map"
-	dnsResolverAddress      = "dns-resolver-address"
+	dnsResolverAddress  = "dns-resolver-address"
-	enableRosenpassFlag     = "enable-rosenpass"
+	enableRosenpassFlag = "enable-rosenpass"
-	rosenpassPermissiveFlag = "rosenpass-permissive"
+	preSharedKeyFlag    = "preshared-key"
-	preSharedKeyFlag        = "preshared-key"
+	interfaceNameFlag   = "interface-name"
-	interfaceNameFlag       = "interface-name"
+	wireguardPortFlag   = "wireguard-port"
 	wireguardPortFlag       = "wireguard-port"
 	disableAutoConnectFlag  = "disable-auto-connect"
 	serverSSHAllowedFlag    = "allow-server-ssh"
 )
 var (
@@ -57,12 +54,8 @@ var (
 	natExternalIPs          []string
 	customDNSAddress        string
 	rosenpassEnabled        bool
 	rosenpassPermissive     bool
 	serverSSHAllowed        bool
 	interfaceName           string
 	wireguardPort           uint16
 	serviceName             string
 	autoConnectDisabled     bool
 	rootCmd                 = &cobra.Command{
 		Use:          "netbird",
 		Short:        "",
@@ -101,16 +94,9 @@ func init() {
 	if runtime.GOOS == "windows" {
 		defaultDaemonAddr = "tcp://127.0.0.1:41731"
 	}
 	defaultServiceName := "netbird"
 	if runtime.GOOS == "windows" {
 		defaultServiceName = "Netbird"
 	}
 	rootCmd.PersistentFlags().StringVar(&daemonAddr, "daemon-addr", defaultDaemonAddr, "Daemon service address to serve CLI requests [unix|tcp]://[path|host:port]")
 	rootCmd.PersistentFlags().StringVarP(&managementURL, "management-url", "m", "", fmt.Sprintf("Management Service URL [http|https]://[host]:[port] (default \"%s\")", internal.DefaultManagementURL))
 	rootCmd.PersistentFlags().StringVar(&adminURL, "admin-url", "", fmt.Sprintf("Admin Panel URL [http|https]://[host]:[port] (default \"%s\")", internal.DefaultAdminURL))
 	rootCmd.PersistentFlags().StringVarP(&serviceName, "service", "s", defaultServiceName, "Netbird system service name")
 	rootCmd.PersistentFlags().StringVarP(&configPath, "config", "c", defaultConfigPath, "Netbird config file location")
 	rootCmd.PersistentFlags().StringVarP(&logLevel, "log-level", "l", "info", "sets Netbird log level")
 	rootCmd.PersistentFlags().StringVar(&logFile, "log-file", defaultLogFile, "sets Netbird log path. If console is specified the log will be output to stdout")
@@ -140,9 +126,6 @@ func init() {
 			`E.g. --dns-resolver-address 127.0.0.1:5053 or --dns-resolver-address ""`,
 	)
 	upCmd.PersistentFlags().BoolVar(&rosenpassEnabled, enableRosenpassFlag, false, "[Experimental] Enable Rosenpass feature. If enabled, the connection will be post-quantum secured via Rosenpass.")
 	upCmd.PersistentFlags().BoolVar(&rosenpassPermissive, rosenpassPermissiveFlag, false, "[Experimental] Enable Rosenpass in permissive mode to allow this peer to accept WireGuard connections without requiring Rosenpass functionality from peers that do not have Rosenpass enabled.")
 	upCmd.PersistentFlags().BoolVar(&serverSSHAllowed, serverSSHAllowedFlag, false, "Allow SSH server on peer. If enabled, the SSH server will be permitted")
 	upCmd.PersistentFlags().BoolVar(&autoConnectDisabled, disableAutoConnectFlag, false, "Disables auto-connect feature. If enabled, then the client won't connect automatically when the service starts.")
 }
 // SetupCloseHandler handles SIGTERM signal and exits with success
@@ -193,7 +176,7 @@ func FlagNameToEnvVar(cmdFlag string, prefix string) string {
 	return prefix + upper
 }
-// DialClientGRPCServer returns client connection to the daemon server.
+// DialClientGRPCServer returns client connection to the dameno server.
 func DialClientGRPCServer(ctx context.Context, addr string) (*grpc.ClientConn, error) {
 	ctx, cancel := context.WithTimeout(ctx, time.Second*3)
 	defer cancel()
--- a/client/cmd/service.go
+++ b/client/cmd/service.go
@@ -2,6 +2,8 @@ package cmd
 import (
 	"context"
 	"runtime"
 	"github.com/kardianos/service"
 	log "github.com/sirupsen/logrus"
 	"github.com/spf13/cobra"
@@ -22,8 +24,12 @@ func newProgram(ctx context.Context, cancel context.CancelFunc) *program {
 }
 func newSVCConfig() *service.Config {
 	name := "netbird"
 	if runtime.GOOS == "windows" {
 		name = "Netbird"
 	}
 	return &service.Config{
-		Name:        serviceName,
+		Name:        name,
 		DisplayName: "Netbird",
 		Description: "A WireGuard-based mesh network that connects your devices into a single private network.",
 		Option:      make(service.KeyValue),
--- a/client/cmd/service_controller.go
+++ b/client/cmd/service_controller.go
@@ -11,12 +11,11 @@ import (
 	"github.com/kardianos/service"
 	log "github.com/sirupsen/logrus"
 	"github.com/spf13/cobra"
 	"google.golang.org/grpc"
 	"github.com/netbirdio/netbird/client/proto"
 	"github.com/netbirdio/netbird/client/server"
 	"github.com/netbirdio/netbird/util"
 	"github.com/spf13/cobra"
 	"google.golang.org/grpc"
 )
 func (p *program) Start(svc service.Service) error {
@@ -110,6 +109,7 @@ var runCmd = &cobra.Command{
 		if err != nil {
 			return err
 		}
 		cmd.Printf("Netbird service is running")
 		return nil
 	},
 }
--- a/client/cmd/service_installer.go
+++ b/client/cmd/service_installer.go
@@ -77,7 +77,6 @@ var installCmd = &cobra.Command{
 			cmd.PrintErrln(err)
 			return err
 		}
 		cmd.Println("Netbird service has been installed")
 		return nil
 	},
@@ -107,7 +106,7 @@ var uninstallCmd = &cobra.Command{
 		if err != nil {
 			return err
 		}
-		cmd.Println("Netbird service has been uninstalled")
+		cmd.Println("Netbird has been uninstalled")
 		return nil
 	},
 }
--- a/client/cmd/status.go
+++ b/client/cmd/status.go
@@ -22,20 +22,14 @@ import (
 )
 type peerStateDetailOutput struct {
-	FQDN                   string           `json:"fqdn" yaml:"fqdn"`
+	FQDN             string           `json:"fqdn" yaml:"fqdn"`
-	IP                     string           `json:"netbirdIp" yaml:"netbirdIp"`
+	IP               string           `json:"netbirdIp" yaml:"netbirdIp"`
-	PubKey                 string           `json:"publicKey" yaml:"publicKey"`
+	PubKey           string           `json:"publicKey" yaml:"publicKey"`
-	Status                 string           `json:"status" yaml:"status"`
+	Status           string           `json:"status" yaml:"status"`
-	LastStatusUpdate       time.Time        `json:"lastStatusUpdate" yaml:"lastStatusUpdate"`
+	LastStatusUpdate time.Time        `json:"lastStatusUpdate" yaml:"lastStatusUpdate"`
-	ConnType               string           `json:"connectionType" yaml:"connectionType"`
+	ConnType         string           `json:"connectionType" yaml:"connectionType"`
-	Direct                 bool             `json:"direct" yaml:"direct"`
+	Direct           bool             `json:"direct" yaml:"direct"`
-	IceCandidateType       iceCandidateType `json:"iceCandidateType" yaml:"iceCandidateType"`
+	IceCandidateType iceCandidateType `json:"iceCandidateType" yaml:"iceCandidateType"`
 	IceCandidateEndpoint   iceCandidateType `json:"iceCandidateEndpoint" yaml:"iceCandidateEndpoint"`
 	LastWireguardHandshake time.Time        `json:"lastWireguardHandshake" yaml:"lastWireguardHandshake"`
 	TransferReceived       int64            `json:"transferReceived" yaml:"transferReceived"`
 	TransferSent           int64            `json:"transferSent" yaml:"transferSent"`
 	RosenpassEnabled       bool             `json:"quantumResistance" yaml:"quantumResistance"`
 	Routes                 []string         `json:"routes" yaml:"routes"`
 }
 type peersStateOutput struct {
@@ -47,25 +41,11 @@ type peersStateOutput struct {
 type signalStateOutput struct {
 	URL       string `json:"url" yaml:"url"`
 	Connected bool   `json:"connected" yaml:"connected"`
 	Error     string `json:"error" yaml:"error"`
 }
 type managementStateOutput struct {
 	URL       string `json:"url" yaml:"url"`
 	Connected bool   `json:"connected" yaml:"connected"`
 	Error     string `json:"error" yaml:"error"`
 }
 type relayStateOutputDetail struct {
 	URI       string `json:"uri" yaml:"uri"`
 	Available bool   `json:"available" yaml:"available"`
 	Error     string `json:"error" yaml:"error"`
 }
 type relayStateOutput struct {
 	Total     int                      `json:"total" yaml:"total"`
 	Available int                      `json:"available" yaml:"available"`
 	Details   []relayStateOutputDetail `json:"details" yaml:"details"`
 }
 type iceCandidateType struct {
@@ -73,28 +53,16 @@ type iceCandidateType struct {
 	Remote string `json:"remote" yaml:"remote"`
 }
 type nsServerGroupStateOutput struct {
 	Servers []string `json:"servers" yaml:"servers"`
 	Domains []string `json:"domains" yaml:"domains"`
 	Enabled bool     `json:"enabled" yaml:"enabled"`
 	Error   string   `json:"error" yaml:"error"`
 }
 type statusOutputOverview struct {
-	Peers               peersStateOutput           `json:"peers" yaml:"peers"`
+	Peers           peersStateOutput      `json:"peers" yaml:"peers"`
-	CliVersion          string                     `json:"cliVersion" yaml:"cliVersion"`
+	CliVersion      string                `json:"cliVersion" yaml:"cliVersion"`
-	DaemonVersion       string                     `json:"daemonVersion" yaml:"daemonVersion"`
+	DaemonVersion   string                `json:"daemonVersion" yaml:"daemonVersion"`
-	ManagementState     managementStateOutput      `json:"management" yaml:"management"`
+	ManagementState managementStateOutput `json:"management" yaml:"management"`
-	SignalState         signalStateOutput          `json:"signal" yaml:"signal"`
+	SignalState     signalStateOutput     `json:"signal" yaml:"signal"`
-	Relays              relayStateOutput           `json:"relays" yaml:"relays"`
+	IP              string                `json:"netbirdIp" yaml:"netbirdIp"`
-	IP                  string                     `json:"netbirdIp" yaml:"netbirdIp"`
+	PubKey          string                `json:"publicKey" yaml:"publicKey"`
-	PubKey              string                     `json:"publicKey" yaml:"publicKey"`
+	KernelInterface bool                  `json:"usesKernelInterface" yaml:"usesKernelInterface"`
-	KernelInterface     bool                       `json:"usesKernelInterface" yaml:"usesKernelInterface"`
+	FQDN            string                `json:"fqdn" yaml:"fqdn"`
 	FQDN                string                     `json:"fqdn" yaml:"fqdn"`
 	RosenpassEnabled    bool                       `json:"quantumResistance" yaml:"quantumResistance"`
 	RosenpassPermissive bool                       `json:"quantumResistancePermissive" yaml:"quantumResistancePermissive"`
 	Routes              []string                   `json:"routes" yaml:"routes"`
 	NSServerGroups      []nsServerGroupStateOutput `json:"dnsServers" yaml:"dnsServers"`
 }
 var (
@@ -178,7 +146,7 @@ func statusFunc(cmd *cobra.Command, args []string) error {
 	case yamlFlag:
 		statusOutputString, err = parseToYAML(outputInformationHolder)
 	default:
-		statusOutputString = parseGeneralSummary(outputInformationHolder, false, false, false)
+		statusOutputString = parseGeneralSummary(outputInformationHolder, false)
 	}
 	if err != nil {
@@ -252,89 +220,37 @@ func convertToStatusOutputOverview(resp *proto.StatusResponse) statusOutputOverv
 	managementOverview := managementStateOutput{
 		URL:       managementState.GetURL(),
 		Connected: managementState.GetConnected(),
 		Error:     managementState.Error,
 	}
 	signalState := pbFullStatus.GetSignalState()
 	signalOverview := signalStateOutput{
 		URL:       signalState.GetURL(),
 		Connected: signalState.GetConnected(),
 		Error:     signalState.Error,
 	}
 	relayOverview := mapRelays(pbFullStatus.GetRelays())
 	peersOverview := mapPeers(resp.GetFullStatus().GetPeers())
 	overview := statusOutputOverview{
-		Peers:               peersOverview,
+		Peers:           peersOverview,
-		CliVersion:          version.NetbirdVersion(),
+		CliVersion:      version.NetbirdVersion(),
-		DaemonVersion:       resp.GetDaemonVersion(),
+		DaemonVersion:   resp.GetDaemonVersion(),
-		ManagementState:     managementOverview,
+		ManagementState: managementOverview,
-		SignalState:         signalOverview,
+		SignalState:     signalOverview,
-		Relays:              relayOverview,
+		IP:              pbFullStatus.GetLocalPeerState().GetIP(),
-		IP:                  pbFullStatus.GetLocalPeerState().GetIP(),
+		PubKey:          pbFullStatus.GetLocalPeerState().GetPubKey(),
-		PubKey:              pbFullStatus.GetLocalPeerState().GetPubKey(),
+		KernelInterface: pbFullStatus.GetLocalPeerState().GetKernelInterface(),
-		KernelInterface:     pbFullStatus.GetLocalPeerState().GetKernelInterface(),
+		FQDN:            pbFullStatus.GetLocalPeerState().GetFqdn(),
 		FQDN:                pbFullStatus.GetLocalPeerState().GetFqdn(),
 		RosenpassEnabled:    pbFullStatus.GetLocalPeerState().GetRosenpassEnabled(),
 		RosenpassPermissive: pbFullStatus.GetLocalPeerState().GetRosenpassPermissive(),
 		Routes:              pbFullStatus.GetLocalPeerState().GetRoutes(),
 		NSServerGroups:      mapNSGroups(pbFullStatus.GetDnsServers()),
 	}
 	return overview
 }
 func mapRelays(relays []*proto.RelayState) relayStateOutput {
 	var relayStateDetail []relayStateOutputDetail
 	var relaysAvailable int
 	for _, relay := range relays {
 		available := relay.GetAvailable()
 		relayStateDetail = append(relayStateDetail,
 			relayStateOutputDetail{
 				URI:       relay.URI,
 				Available: available,
 				Error:     relay.GetError(),
 			},
 		)
 		if available {
 			relaysAvailable++
 		}
 	}
 	return relayStateOutput{
 		Total:     len(relays),
 		Available: relaysAvailable,
 		Details:   relayStateDetail,
 	}
 }
 func mapNSGroups(servers []*proto.NSGroupState) []nsServerGroupStateOutput {
 	mappedNSGroups := make([]nsServerGroupStateOutput, 0, len(servers))
 	for _, pbNsGroupServer := range servers {
 		mappedNSGroups = append(mappedNSGroups, nsServerGroupStateOutput{
 			Servers: pbNsGroupServer.GetServers(),
 			Domains: pbNsGroupServer.GetDomains(),
 			Enabled: pbNsGroupServer.GetEnabled(),
 			Error:   pbNsGroupServer.GetError(),
 		})
 	}
 	return mappedNSGroups
 }
 func mapPeers(peers []*proto.PeerState) peersStateOutput {
 	var peersStateDetail []peerStateDetailOutput
 	localICE := ""
 	remoteICE := ""
 	localICEEndpoint := ""
 	remoteICEEndpoint := ""
 	connType := ""
 	peersConnected := 0
 	lastHandshake := time.Time{}
 	transferReceived := int64(0)
 	transferSent := int64(0)
 	for _, pbPeerState := range peers {
 		isPeerConnected := pbPeerState.ConnStatus == peer.StatusConnected.String()
 		if skipDetailByFilters(pbPeerState, isPeerConnected) {
@@ -345,15 +261,10 @@ func mapPeers(peers []*proto.PeerState) peersStateOutput {
 			localICE = pbPeerState.GetLocalIceCandidateType()
 			remoteICE = pbPeerState.GetRemoteIceCandidateType()
 			localICEEndpoint = pbPeerState.GetLocalIceCandidateEndpoint()
 			remoteICEEndpoint = pbPeerState.GetRemoteIceCandidateEndpoint()
 			connType = "P2P"
 			if pbPeerState.Relayed {
 				connType = "Relayed"
 			}
 			lastHandshake = pbPeerState.GetLastWireguardHandshake().AsTime().Local()
 			transferReceived = pbPeerState.GetBytesRx()
 			transferSent = pbPeerState.GetBytesTx()
 		}
 		timeLocal := pbPeerState.GetConnStatusUpdate().AsTime().Local()
@@ -368,16 +279,7 @@ func mapPeers(peers []*proto.PeerState) peersStateOutput {
 				Local:  localICE,
 				Remote: remoteICE,
 			},
-			IceCandidateEndpoint: iceCandidateType{
+			FQDN: pbPeerState.GetFqdn(),
 				Local:  localICEEndpoint,
 				Remote: remoteICEEndpoint,
 			},
 			FQDN:                   pbPeerState.GetFqdn(),
 			LastWireguardHandshake: lastHandshake,
 			TransferReceived:       transferReceived,
 			TransferSent:           transferSent,
 			RosenpassEnabled:       pbPeerState.GetRosenpassEnabled(),
 			Routes:                 pbPeerState.GetRoutes(),
 		}
 		peersStateDetail = append(peersStateDetail, peerState)
@@ -427,31 +329,22 @@ func parseToYAML(overview statusOutputOverview) (string, error) {
 	return string(yamlBytes), nil
 }
-func parseGeneralSummary(overview statusOutputOverview, showURL bool, showRelays bool, showNameServers bool) string {
+func parseGeneralSummary(overview statusOutputOverview, showURL bool) string {
-	var managementConnString string
+
 	managementConnString := "Disconnected"
 	if overview.ManagementState.Connected {
 		managementConnString = "Connected"
 		if showURL {
 			managementConnString = fmt.Sprintf("%s to %s", managementConnString, overview.ManagementState.URL)
 		}
 	} else {
 		managementConnString = "Disconnected"
 		if overview.ManagementState.Error != "" {
 			managementConnString = fmt.Sprintf("%s, reason: %s", managementConnString, overview.ManagementState.Error)
 		}
 	}
-	var signalConnString string
+	signalConnString := "Disconnected"
 	if overview.SignalState.Connected {
 		signalConnString = "Connected"
 		if showURL {
 			signalConnString = fmt.Sprintf("%s to %s", signalConnString, overview.SignalState.URL)
 		}
 	} else {
 		signalConnString = "Disconnected"
 		if overview.SignalState.Error != "" {
 			signalConnString = fmt.Sprintf("%s, reason: %s", signalConnString, overview.SignalState.Error)
 		}
 	}
 	interfaceTypeString := "Userspace"
@@ -463,64 +356,6 @@ func parseGeneralSummary(overview statusOutputOverview, showURL bool, showRelays
 		interfaceIP = "N/A"
 	}
 	var relaysString string
 	if showRelays {
 		for _, relay := range overview.Relays.Details {
 			available := "Available"
 			reason := ""
 			if !relay.Available {
 				available = "Unavailable"
 				reason = fmt.Sprintf(", reason: %s", relay.Error)
 			}
 			relaysString += fmt.Sprintf("\n  [%s] is %s%s", relay.URI, available, reason)
 		}
 	} else {
 		relaysString = fmt.Sprintf("%d/%d Available", overview.Relays.Available, overview.Relays.Total)
 	}
 	routes := "-"
 	if len(overview.Routes) > 0 {
 		sort.Strings(overview.Routes)
 		routes = strings.Join(overview.Routes, ", ")
 	}
 	var dnsServersString string
 	if showNameServers {
 		for _, nsServerGroup := range overview.NSServerGroups {
 			enabled := "Available"
 			if !nsServerGroup.Enabled {
 				enabled = "Unavailable"
 			}
 			errorString := ""
 			if nsServerGroup.Error != "" {
 				errorString = fmt.Sprintf(", reason: %s", nsServerGroup.Error)
 				errorString = strings.TrimSpace(errorString)
 			}
 			domainsString := strings.Join(nsServerGroup.Domains, ", ")
 			if domainsString == "" {
 				domainsString = "." // Show "." for the default zone
 			}
 			dnsServersString += fmt.Sprintf(
 				"\n  [%s] for [%s] is %s%s",
 				strings.Join(nsServerGroup.Servers, ", "),
 				domainsString,
 				enabled,
 				errorString,
 			)
 		}
 	} else {
 		dnsServersString = fmt.Sprintf("%d/%d Available", countEnabled(overview.NSServerGroups), len(overview.NSServerGroups))
 	}
 	rosenpassEnabledStatus := "false"
 	if overview.RosenpassEnabled {
 		rosenpassEnabledStatus = "true"
 		if overview.RosenpassPermissive {
 			rosenpassEnabledStatus = "true (permissive)" //nolint:gosec
 		}
 	}
 	peersCountString := fmt.Sprintf("%d/%d Connected", overview.Peers.Connected, overview.Peers.Total)
 	summary := fmt.Sprintf(
@@ -528,33 +363,25 @@ func parseGeneralSummary(overview statusOutputOverview, showURL bool, showRelays
 			"CLI version: %s\n"+
 			"Management: %s\n"+
 			"Signal: %s\n"+
 			"Relays: %s\n"+
 			"Nameservers: %s\n"+
 			"FQDN: %s\n"+
 			"NetBird IP: %s\n"+
 			"Interface type: %s\n"+
 			"Quantum resistance: %s\n"+
 			"Routes: %s\n"+
 			"Peers count: %s\n",
 		overview.DaemonVersion,
 		version.NetbirdVersion(),
 		managementConnString,
 		signalConnString,
 		relaysString,
 		dnsServersString,
 		overview.FQDN,
 		interfaceIP,
 		interfaceTypeString,
 		rosenpassEnabledStatus,
 		routes,
 		peersCountString,
 	)
 	return summary
 }
 func parseToFullDetailSummary(overview statusOutputOverview) string {
-	parsedPeersString := parsePeers(overview.Peers, overview.RosenpassEnabled, overview.RosenpassPermissive)
+	parsedPeersString := parsePeers(overview.Peers)
-	summary := parseGeneralSummary(overview, true, true, true)
+	summary := parseGeneralSummary(overview, true)
 	return fmt.Sprintf(
 		"Peers detail:"+
@@ -565,7 +392,7 @@ func parseToFullDetailSummary(overview statusOutputOverview) string {
 	)
 }
-func parsePeers(peers peersStateOutput, rosenpassEnabled, rosenpassPermissive bool) string {
+func parsePeers(peers peersStateOutput) string {
 	var (
 		peersString = ""
 	)
@@ -582,48 +409,6 @@ func parsePeers(peers peersStateOutput, rosenpassEnabled, rosenpassPermissive bo
 			remoteICE = peerState.IceCandidateType.Remote
 		}
 		localICEEndpoint := "-"
 		if peerState.IceCandidateEndpoint.Local != "" {
 			localICEEndpoint = peerState.IceCandidateEndpoint.Local
 		}
 		remoteICEEndpoint := "-"
 		if peerState.IceCandidateEndpoint.Remote != "" {
 			remoteICEEndpoint = peerState.IceCandidateEndpoint.Remote
 		}
 		lastStatusUpdate := "-"
 		if !peerState.LastStatusUpdate.IsZero() {
 			lastStatusUpdate = peerState.LastStatusUpdate.Format("2006-01-02 15:04:05")
 		}
 		lastWireGuardHandshake := "-"
 		if !peerState.LastWireguardHandshake.IsZero() && peerState.LastWireguardHandshake != time.Unix(0, 0) {
 			lastWireGuardHandshake = peerState.LastWireguardHandshake.Format("2006-01-02 15:04:05")
 		}
 		rosenpassEnabledStatus := "false"
 		if rosenpassEnabled {
 			if peerState.RosenpassEnabled {
 				rosenpassEnabledStatus = "true"
 			} else {
 				if rosenpassPermissive {
 					rosenpassEnabledStatus = "false (remote didn't enable quantum resistance)"
 				} else {
 					rosenpassEnabledStatus = "false (connection won't work without a permissive mode)"
 				}
 			}
 		} else {
 			if peerState.RosenpassEnabled {
 				rosenpassEnabledStatus = "false (connection might not work without a remote permissive mode)"
 			}
 		}
 		routes := "-"
 		if len(peerState.Routes) > 0 {
 			sort.Strings(peerState.Routes)
 			routes = strings.Join(peerState.Routes, ", ")
 		}
 		peerString := fmt.Sprintf(
 			"\n %s:\n"+
 				"  NetBird IP: %s\n"+
@@ -633,12 +418,7 @@ func parsePeers(peers peersStateOutput, rosenpassEnabled, rosenpassPermissive bo
 				"  Connection type: %s\n"+
 				"  Direct: %t\n"+
 				"  ICE candidate (Local/Remote): %s/%s\n"+
-				"  ICE candidate endpoints (Local/Remote): %s/%s\n"+
+				"  Last connection update: %s\n",
 				"  Last connection update: %s\n"+
 				"  Last WireGuard handshake: %s\n"+
 				"  Transfer status (received/sent) %s/%s\n"+
 				"  Quantum resistance: %s\n"+
 				"  Routes: %s\n",
 			peerState.FQDN,
 			peerState.IP,
 			peerState.PubKey,
@@ -647,14 +427,7 @@ func parsePeers(peers peersStateOutput, rosenpassEnabled, rosenpassPermissive bo
 			peerState.Direct,
 			localICE,
 			remoteICE,
-			localICEEndpoint,
+			peerState.LastStatusUpdate.Format("2006-01-02 15:04:05"),
 			remoteICEEndpoint,
 			lastStatusUpdate,
 			lastWireGuardHandshake,
 			toIEC(peerState.TransferReceived),
 			toIEC(peerState.TransferSent),
 			rosenpassEnabledStatus,
 			routes,
 		)
 		peersString += peerString
@@ -694,27 +467,3 @@ func skipDetailByFilters(peerState *proto.PeerState, isConnected bool) bool {
 	return statusEval || ipEval || nameEval
 }
 func toIEC(b int64) string {
 	const unit = 1024
 	if b < unit {
 		return fmt.Sprintf("%d B", b)
 	}
 	div, exp := int64(unit), 0
 	for n := b / unit; n >= unit; n /= unit {
 		div *= unit
 		exp++
 	}
 	return fmt.Sprintf("%.1f %ciB",
 		float64(b)/float64(div), "KMGTPE"[exp])
 }
 func countEnabled(dnsServers []nsServerGroupStateOutput) int {
 	count := 0
 	for _, server := range dnsServers {
 		if server.Enabled {
 			count++
 		}
 	}
 	return count
 }
--- a/client/cmd/status_test.go
+++ b/client/cmd/status_test.go
@@ -1,13 +1,10 @@
 package cmd
 import (
 	"bytes"
 	"encoding/json"
 	"testing"
 	"time"
 	"github.com/stretchr/testify/assert"
 	"github.com/stretchr/testify/require"
 	"google.golang.org/protobuf/types/known/timestamppb"
 	"github.com/netbirdio/netbird/client/proto"
@@ -28,93 +25,41 @@ var resp = &proto.StatusResponse{
 	FullStatus: &proto.FullStatus{
 		Peers: []*proto.PeerState{
 			{
-				IP:                         "192.168.178.101",
+				IP:                     "192.168.178.101",
-				PubKey:                     "Pubkey1",
+				PubKey:                 "Pubkey1",
-				Fqdn:                       "peer-1.awesome-domain.com",
+				Fqdn:                   "peer-1.awesome-domain.com",
-				ConnStatus:                 "Connected",
+				ConnStatus:             "Connected",
-				ConnStatusUpdate:           timestamppb.New(time.Date(2001, time.Month(1), 1, 1, 1, 1, 0, time.UTC)),
+				ConnStatusUpdate:       timestamppb.New(time.Date(2001, time.Month(1), 1, 1, 1, 1, 0, time.UTC)),
-				Relayed:                    false,
+				Relayed:                false,
-				Direct:                     true,
+				Direct:                 true,
-				LocalIceCandidateType:      "",
+				LocalIceCandidateType:  "",
-				RemoteIceCandidateType:     "",
+				RemoteIceCandidateType: "",
 				LocalIceCandidateEndpoint:  "",
 				RemoteIceCandidateEndpoint: "",
 				LastWireguardHandshake:     timestamppb.New(time.Date(2001, time.Month(1), 1, 1, 1, 2, 0, time.UTC)),
 				BytesRx:                    200,
 				BytesTx:                    100,
 				Routes: []string{
 					"10.1.0.0/24",
 				},
 			},
 			{
-				IP:                         "192.168.178.102",
+				IP:                     "192.168.178.102",
-				PubKey:                     "Pubkey2",
+				PubKey:                 "Pubkey2",
-				Fqdn:                       "peer-2.awesome-domain.com",
+				Fqdn:                   "peer-2.awesome-domain.com",
-				ConnStatus:                 "Connected",
+				ConnStatus:             "Connected",
-				ConnStatusUpdate:           timestamppb.New(time.Date(2002, time.Month(2), 2, 2, 2, 2, 0, time.UTC)),
+				ConnStatusUpdate:       timestamppb.New(time.Date(2002, time.Month(2), 2, 2, 2, 2, 0, time.UTC)),
-				Relayed:                    true,
+				Relayed:                true,
-				Direct:                     false,
+				Direct:                 false,
-				LocalIceCandidateType:      "relay",
+				LocalIceCandidateType:  "relay",
-				RemoteIceCandidateType:     "prflx",
+				RemoteIceCandidateType: "prflx",
 				LocalIceCandidateEndpoint:  "10.0.0.1:10001",
 				RemoteIceCandidateEndpoint: "10.0.10.1:10002",
 				LastWireguardHandshake:     timestamppb.New(time.Date(2002, time.Month(2), 2, 2, 2, 3, 0, time.UTC)),
 				BytesRx:                    2000,
 				BytesTx:                    1000,
 			},
 		},
 		ManagementState: &proto.ManagementState{
 			URL:       "my-awesome-management.com:443",
 			Connected: true,
 			Error:     "",
 		},
 		SignalState: &proto.SignalState{
 			URL:       "my-awesome-signal.com:443",
 			Connected: true,
 			Error:     "",
 		},
 		Relays: []*proto.RelayState{
 			{
 				URI:       "stun:my-awesome-stun.com:3478",
 				Available: true,
 				Error:     "",
 			},
 			{
 				URI:       "turns:my-awesome-turn.com:443?transport=tcp",
 				Available: false,
 				Error:     "context: deadline exceeded",
 			},
 		},
 		LocalPeerState: &proto.LocalPeerState{
 			IP:              "192.168.178.100/16",
 			PubKey:          "Some-Pub-Key",
 			KernelInterface: true,
 			Fqdn:            "some-localhost.awesome-domain.com",
 			Routes: []string{
 				"10.10.0.0/24",
 			},
 		},
 		DnsServers: []*proto.NSGroupState{
 			{
 				Servers: []string{
 					"8.8.8.8:53",
 				},
 				Domains: nil,
 				Enabled: true,
 				Error:   "",
 			},
 			{
 				Servers: []string{
 					"1.1.1.1:53",
 					"2.2.2.2:53",
 				},
 				Domains: []string{
 					"example.com",
 					"example.net",
 				},
 				Enabled: false,
 				Error:   "timeout",
 			},
 		},
 	},
 	DaemonVersion: "0.14.1",
@@ -137,16 +82,6 @@ var overview = statusOutputOverview{
 					Local:  "",
 					Remote: "",
 				},
 				IceCandidateEndpoint: iceCandidateType{
 					Local:  "",
 					Remote: "",
 				},
 				LastWireguardHandshake: time.Date(2001, 1, 1, 1, 1, 2, 0, time.UTC),
 				TransferReceived:       200,
 				TransferSent:           100,
 				Routes: []string{
 					"10.1.0.0/24",
 				},
 			},
 			{
 				IP:               "192.168.178.102",
@@ -160,13 +95,6 @@ var overview = statusOutputOverview{
 					Local:  "relay",
 					Remote: "prflx",
 				},
 				IceCandidateEndpoint: iceCandidateType{
 					Local:  "10.0.0.1:10001",
 					Remote: "10.0.10.1:10002",
 				},
 				LastWireguardHandshake: time.Date(2002, 2, 2, 2, 2, 3, 0, time.UTC),
 				TransferReceived:       2000,
 				TransferSent:           1000,
 			},
 		},
 	},
@@ -175,58 +103,15 @@ var overview = statusOutputOverview{
 	ManagementState: managementStateOutput{
 		URL:       "my-awesome-management.com:443",
 		Connected: true,
 		Error:     "",
 	},
 	SignalState: signalStateOutput{
 		URL:       "my-awesome-signal.com:443",
 		Connected: true,
 		Error:     "",
 	},
 	Relays: relayStateOutput{
 		Total:     2,
 		Available: 1,
 		Details: []relayStateOutputDetail{
 			{
 				URI:       "stun:my-awesome-stun.com:3478",
 				Available: true,
 				Error:     "",
 			},
 			{
 				URI:       "turns:my-awesome-turn.com:443?transport=tcp",
 				Available: false,
 				Error:     "context: deadline exceeded",
 			},
 		},
 	},
 	IP:              "192.168.178.100/16",
 	PubKey:          "Some-Pub-Key",
 	KernelInterface: true,
 	FQDN:            "some-localhost.awesome-domain.com",
 	NSServerGroups: []nsServerGroupStateOutput{
 		{
 			Servers: []string{
 				"8.8.8.8:53",
 			},
 			Domains: nil,
 			Enabled: true,
 			Error:   "",
 		},
 		{
 			Servers: []string{
 				"1.1.1.1:53",
 				"2.2.2.2:53",
 			},
 			Domains: []string{
 				"example.com",
 				"example.net",
 			},
 			Enabled: false,
 			Error:   "timeout",
 		},
 	},
 	Routes: []string{
 		"10.10.0.0/24",
 	},
 }
 func TestConversionFromFullStatusToOutputOverview(t *testing.T) {
@@ -260,219 +145,107 @@ func TestSortingOfPeers(t *testing.T) {
 }
 func TestParsingToJSON(t *testing.T) {
-	jsonString, _ := parseToJSON(overview)
+	json, _ := parseToJSON(overview)
 	//@formatter:off
-	expectedJSONString := `
+	expectedJSON := "{\"" +
-        {
+		"peers\":" +
-          "peers": {
+		"{" +
-            "total": 2,
+		"\"total\":2," +
-            "connected": 2,
+		"\"connected\":2," +
-            "details": [
+		"\"details\":" +
-              {
+		"[" +
-                "fqdn": "peer-1.awesome-domain.com",
+		"{" +
-                "netbirdIp": "192.168.178.101",
+		"\"fqdn\":\"peer-1.awesome-domain.com\"," +
-                "publicKey": "Pubkey1",
+		"\"netbirdIp\":\"192.168.178.101\"," +
-                "status": "Connected",
+		"\"publicKey\":\"Pubkey1\"," +
-                "lastStatusUpdate": "2001-01-01T01:01:01Z",
+		"\"status\":\"Connected\"," +
-                "connectionType": "P2P",
+		"\"lastStatusUpdate\":\"2001-01-01T01:01:01Z\"," +
-                "direct": true,
+		"\"connectionType\":\"P2P\"," +
-                "iceCandidateType": {
+		"\"direct\":true," +
-                  "local": "",
+		"\"iceCandidateType\":" +
-                  "remote": ""
+		"{" +
-                },
+		"\"local\":\"\"," +
-                "iceCandidateEndpoint": {
+		"\"remote\":\"\"" +
-                  "local": "",
+		"}" +
-                  "remote": ""
+		"}," +
-                },
+		"{" +
-                "lastWireguardHandshake": "2001-01-01T01:01:02Z",
+		"\"fqdn\":\"peer-2.awesome-domain.com\"," +
-                "transferReceived": 200,
+		"\"netbirdIp\":\"192.168.178.102\"," +
-                "transferSent": 100,
+		"\"publicKey\":\"Pubkey2\"," +
-                "quantumResistance": false,
+		"\"status\":\"Connected\"," +
-                "routes": [
+		"\"lastStatusUpdate\":\"2002-02-02T02:02:02Z\"," +
-                  "10.1.0.0/24"
+		"\"connectionType\":\"Relayed\"," +
-                ]
+		"\"direct\":false," +
-              },
+		"\"iceCandidateType\":" +
-              {
+		"{" +
-                "fqdn": "peer-2.awesome-domain.com",
+		"\"local\":\"relay\"," +
-                "netbirdIp": "192.168.178.102",
+		"\"remote\":\"prflx\"" +
-                "publicKey": "Pubkey2",
+		"}" +
-                "status": "Connected",
+		"}" +
-                "lastStatusUpdate": "2002-02-02T02:02:02Z",
+		"]" +
-                "connectionType": "Relayed",
+		"}," +
-                "direct": false,
+		"\"cliVersion\":\"development\"," +
-                "iceCandidateType": {
+		"\"daemonVersion\":\"0.14.1\"," +
-                  "local": "relay",
+		"\"management\":" +
-                  "remote": "prflx"
+		"{" +
-                },
+		"\"url\":\"my-awesome-management.com:443\"," +
-                "iceCandidateEndpoint": {
+		"\"connected\":true" +
-                  "local": "10.0.0.1:10001",
+		"}," +
-                  "remote": "10.0.10.1:10002"
+		"\"signal\":" +
-                },
+		"{\"" +
-                "lastWireguardHandshake": "2002-02-02T02:02:03Z",
+		"url\":\"my-awesome-signal.com:443\"," +
-                "transferReceived": 2000,
+		"\"connected\":true" +
-                "transferSent": 1000,
+		"}," +
-                "quantumResistance": false,
+		"\"netbirdIp\":\"192.168.178.100/16\"," +
-                "routes": null
+		"\"publicKey\":\"Some-Pub-Key\"," +
-              }
+		"\"usesKernelInterface\":true," +
-            ]
+		"\"fqdn\":\"some-localhost.awesome-domain.com\"" +
-          },
+		"}"
          "cliVersion": "development",
          "daemonVersion": "0.14.1",
          "management": {
            "url": "my-awesome-management.com:443",
            "connected": true,
            "error": ""
          },
          "signal": {
            "url": "my-awesome-signal.com:443",
            "connected": true,
            "error": ""
          },
          "relays": {
            "total": 2,
            "available": 1,
            "details": [
              {
                "uri": "stun:my-awesome-stun.com:3478",
                "available": true,
                "error": ""
              },
              {
                "uri": "turns:my-awesome-turn.com:443?transport=tcp",
                "available": false,
                "error": "context: deadline exceeded"
              }
            ]
          },
          "netbirdIp": "192.168.178.100/16",
          "publicKey": "Some-Pub-Key",
          "usesKernelInterface": true,
          "fqdn": "some-localhost.awesome-domain.com",
          "quantumResistance": false,
          "quantumResistancePermissive": false,
          "routes": [
            "10.10.0.0/24"
          ],
          "dnsServers": [
            {
              "servers": [
                "8.8.8.8:53"
              ],
              "domains": null,
              "enabled": true,
              "error": ""
            },
            {
              "servers": [
                "1.1.1.1:53",
                "2.2.2.2:53"
              ],
              "domains": [
                "example.com",
                "example.net"
              ],
              "enabled": false,
              "error": "timeout"
            }
          ]
        }`
 	// @formatter:on
-	var expectedJSON bytes.Buffer
+	assert.Equal(t, expectedJSON, json)
 	require.NoError(t, json.Compact(&expectedJSON, []byte(expectedJSONString)))
 	assert.Equal(t, expectedJSON.String(), jsonString)
 }
 func TestParsingToYAML(t *testing.T) {
 	yaml, _ := parseToYAML(overview)
-	expectedYAML :=
+	expectedYAML := "peers:\n" +
-		`peers:
+		"    total: 2\n" +
-    total: 2
+		"    connected: 2\n" +
-    connected: 2
+		"    details:\n" +
-    details:
+		"        - fqdn: peer-1.awesome-domain.com\n" +
-        - fqdn: peer-1.awesome-domain.com
+		"          netbirdIp: 192.168.178.101\n" +
-          netbirdIp: 192.168.178.101
+		"          publicKey: Pubkey1\n" +
-          publicKey: Pubkey1
+		"          status: Connected\n" +
-          status: Connected
+		"          lastStatusUpdate: 2001-01-01T01:01:01Z\n" +
-          lastStatusUpdate: 2001-01-01T01:01:01Z
+		"          connectionType: P2P\n" +
-          connectionType: P2P
+		"          direct: true\n" +
-          direct: true
+		"          iceCandidateType:\n" +
-          iceCandidateType:
+		"            local: \"\"\n" +
-            local: ""
+		"            remote: \"\"\n" +
-            remote: ""
+		"        - fqdn: peer-2.awesome-domain.com\n" +
-          iceCandidateEndpoint:
+		"          netbirdIp: 192.168.178.102\n" +
-            local: ""
+		"          publicKey: Pubkey2\n" +
-            remote: ""
+		"          status: Connected\n" +
-          lastWireguardHandshake: 2001-01-01T01:01:02Z
+		"          lastStatusUpdate: 2002-02-02T02:02:02Z\n" +
-          transferReceived: 200
+		"          connectionType: Relayed\n" +
-          transferSent: 100
+		"          direct: false\n" +
-          quantumResistance: false
+		"          iceCandidateType:\n" +
-          routes:
+		"            local: relay\n" +
-            - 10.1.0.0/24
+		"            remote: prflx\n" +
-        - fqdn: peer-2.awesome-domain.com
+		"cliVersion: development\n" +
-          netbirdIp: 192.168.178.102
+		"daemonVersion: 0.14.1\n" +
-          publicKey: Pubkey2
+		"management:\n" +
-          status: Connected
+		"    url: my-awesome-management.com:443\n" +
-          lastStatusUpdate: 2002-02-02T02:02:02Z
+		"    connected: true\n" +
-          connectionType: Relayed
+		"signal:\n" +
-          direct: false
+		"    url: my-awesome-signal.com:443\n" +
-          iceCandidateType:
+		"    connected: true\n" +
-            local: relay
+		"netbirdIp: 192.168.178.100/16\n" +
-            remote: prflx
+		"publicKey: Some-Pub-Key\n" +
-          iceCandidateEndpoint:
+		"usesKernelInterface: true\n" +
-            local: 10.0.0.1:10001
+		"fqdn: some-localhost.awesome-domain.com\n"
            remote: 10.0.10.1:10002
          lastWireguardHandshake: 2002-02-02T02:02:03Z
          transferReceived: 2000
          transferSent: 1000
          quantumResistance: false
          routes: []
 cliVersion: development
 daemonVersion: 0.14.1
 management:
    url: my-awesome-management.com:443
    connected: true
    error: ""
 signal:
    url: my-awesome-signal.com:443
    connected: true
    error: ""
 relays:
    total: 2
    available: 1
    details:
        - uri: stun:my-awesome-stun.com:3478
          available: true
          error: ""
        - uri: turns:my-awesome-turn.com:443?transport=tcp
          available: false
          error: 'context: deadline exceeded'
 netbirdIp: 192.168.178.100/16
 publicKey: Some-Pub-Key
 usesKernelInterface: true
 fqdn: some-localhost.awesome-domain.com
 quantumResistance: false
 quantumResistancePermissive: false
 routes:
    - 10.10.0.0/24
 dnsServers:
    - servers:
        - 8.8.8.8:53
      domains: []
      enabled: true
      error: ""
    - servers:
        - 1.1.1.1:53
        - 2.2.2.2:53
      domains:
        - example.com
        - example.net
      enabled: false
      error: timeout
 `
 	assert.Equal(t, expectedYAML, yaml)
 }
@@ -480,76 +253,50 @@ dnsServers:
 func TestParsingToDetail(t *testing.T) {
 	detail := parseToFullDetailSummary(overview)
-	expectedDetail :=
+	expectedDetail := "Peers detail:\n" +
-		`Peers detail:
+		" peer-1.awesome-domain.com:\n" +
- peer-1.awesome-domain.com:
+		"  NetBird IP: 192.168.178.101\n" +
-  NetBird IP: 192.168.178.101
+		"  Public key: Pubkey1\n" +
-  Public key: Pubkey1
+		"  Status: Connected\n" +
-  Status: Connected
+		"  -- detail --\n" +
-  -- detail --
+		"  Connection type: P2P\n" +
-  Connection type: P2P
+		"  Direct: true\n" +
-  Direct: true
+		"  ICE candidate (Local/Remote): -/-\n" +
-  ICE candidate (Local/Remote): -/-
+		"  Last connection update: 2001-01-01 01:01:01\n" +
-  ICE candidate endpoints (Local/Remote): -/-
+		"\n" +
-  Last connection update: 2001-01-01 01:01:01
+		" peer-2.awesome-domain.com:\n" +
-  Last WireGuard handshake: 2001-01-01 01:01:02
+		"  NetBird IP: 192.168.178.102\n" +
-  Transfer status (received/sent) 200 B/100 B
+		"  Public key: Pubkey2\n" +
-  Quantum resistance: false
+		"  Status: Connected\n" +
-  Routes: 10.1.0.0/24
+		"  -- detail --\n" +
-
+		"  Connection type: Relayed\n" +
- peer-2.awesome-domain.com:
+		"  Direct: false\n" +
-  NetBird IP: 192.168.178.102
+		"  ICE candidate (Local/Remote): relay/prflx\n" +
-  Public key: Pubkey2
+		"  Last connection update: 2002-02-02 02:02:02\n" +
-  Status: Connected
+		"\n" +
-  -- detail --
+		"Daemon version: 0.14.1\n" +
-  Connection type: Relayed
+		"CLI version: development\n" +
-  Direct: false
+		"Management: Connected to my-awesome-management.com:443\n" +
-  ICE candidate (Local/Remote): relay/prflx
+		"Signal: Connected to my-awesome-signal.com:443\n" +
-  ICE candidate endpoints (Local/Remote): 10.0.0.1:10001/10.0.10.1:10002
+		"FQDN: some-localhost.awesome-domain.com\n" +
-  Last connection update: 2002-02-02 02:02:02
+		"NetBird IP: 192.168.178.100/16\n" +
-  Last WireGuard handshake: 2002-02-02 02:02:03
+		"Interface type: Kernel\n" +
-  Transfer status (received/sent) 2.0 KiB/1000 B
+		"Peers count: 2/2 Connected\n"
  Quantum resistance: false
  Routes: -
 Daemon version: 0.14.1
 CLI version: development
 Management: Connected to my-awesome-management.com:443
 Signal: Connected to my-awesome-signal.com:443
 Relays: 
  [stun:my-awesome-stun.com:3478] is Available
  [turns:my-awesome-turn.com:443?transport=tcp] is Unavailable, reason: context: deadline exceeded
 Nameservers: 
  [8.8.8.8:53] for [.] is Available
  [1.1.1.1:53, 2.2.2.2:53] for [example.com, example.net] is Unavailable, reason: timeout
 FQDN: some-localhost.awesome-domain.com
 NetBird IP: 192.168.178.100/16
 Interface type: Kernel
 Quantum resistance: false
 Routes: 10.10.0.0/24
 Peers count: 2/2 Connected
 `
 	assert.Equal(t, expectedDetail, detail)
 }
 func TestParsingToShortVersion(t *testing.T) {
-	shortVersion := parseGeneralSummary(overview, false, false, false)
+	shortVersion := parseGeneralSummary(overview, false)
-	expectedString :=
+	expectedString := "Daemon version: 0.14.1\n" +
-		`Daemon version: 0.14.1
+		"CLI version: development\n" +
-CLI version: development
+		"Management: Connected\n" +
-Management: Connected
+		"Signal: Connected\n" +
-Signal: Connected
+		"FQDN: some-localhost.awesome-domain.com\n" +
-Relays: 1/2 Available
+		"NetBird IP: 192.168.178.100/16\n" +
-Nameservers: 1/2 Available
+		"Interface type: Kernel\n" +
-FQDN: some-localhost.awesome-domain.com
+		"Peers count: 2/2 Connected\n"
 NetBird IP: 192.168.178.100/16
 Interface type: Kernel
 Quantum resistance: false
 Routes: 10.10.0.0/24
 Peers count: 2/2 Connected
 `
 	assert.Equal(t, expectedString, shortVersion)
 }
--- a/client/cmd/testutil.go
+++ b/client/cmd/testutil.go
@@ -78,7 +78,8 @@ func startManagement(t *testing.T, config *mgmt.Config) (*grpc.Server, net.Liste
 	if err != nil {
 		return nil, nil
 	}
-	accountManager, err := mgmt.BuildManager(store, peersUpdateManager, nil, "", "", eventStore, nil, false)
+	accountManager, err := mgmt.BuildManager(store, peersUpdateManager, nil, "", "",
 		eventStore, false)
 	if err != nil {
 		t.Fatal(err)
 	}
--- a/client/cmd/up.go
+++ b/client/cmd/up.go
@@ -94,14 +94,6 @@ func runInForegroundMode(ctx context.Context, cmd *cobra.Command) error {
 		ic.RosenpassEnabled = &rosenpassEnabled
 	}
 	if cmd.Flag(rosenpassPermissiveFlag).Changed {
 		ic.RosenpassPermissive = &rosenpassPermissive
 	}
 	if cmd.Flag(serverSSHAllowedFlag).Changed {
 		ic.ServerSSHAllowed = &serverSSHAllowed
 	}
 	if cmd.Flag(interfaceNameFlag).Changed {
 		if err := parseInterfaceName(interfaceName); err != nil {
 			return err
@@ -118,18 +110,6 @@ func runInForegroundMode(ctx context.Context, cmd *cobra.Command) error {
 		ic.PreSharedKey = &preSharedKey
 	}
 	if cmd.Flag(disableAutoConnectFlag).Changed {
 		ic.DisableAutoConnect = &autoConnectDisabled
 		if autoConnectDisabled {
 			cmd.Println("Autoconnect has been disabled. The client won't connect automatically when the service starts.")
 		}
 		if !autoConnectDisabled {
 			cmd.Println("Autoconnect has been enabled. The client will connect automatically when the service starts.")
 		}
 	}
 	config, err := internal.UpdateOrCreateConfig(ic)
 	if err != nil {
 		return fmt.Errorf("get config file: %v", err)
@@ -183,6 +163,7 @@ func runInDaemonMode(ctx context.Context, cmd *cobra.Command) error {
 	loginRequest := proto.LoginRequest{
 		SetupKey:             setupKey,
 		PreSharedKey:         preSharedKey,
 		ManagementUrl:        managementURL,
 		AdminURL:             adminURL,
 		NatExternalIPs:       natExternalIPs,
@@ -192,26 +173,10 @@ func runInDaemonMode(ctx context.Context, cmd *cobra.Command) error {
 		Hostname:             hostName,
 	}
 	if rootCmd.PersistentFlags().Changed(preSharedKeyFlag) {
 		loginRequest.OptionalPreSharedKey = &preSharedKey
 	}
 	if cmd.Flag(enableRosenpassFlag).Changed {
 		loginRequest.RosenpassEnabled = &rosenpassEnabled
 	}
 	if cmd.Flag(rosenpassPermissiveFlag).Changed {
 		loginRequest.RosenpassPermissive = &rosenpassPermissive
 	}
 	if cmd.Flag(serverSSHAllowedFlag).Changed {
 		loginRequest.ServerSSHAllowed = &serverSSHAllowed
 	}
 	if cmd.Flag(disableAutoConnectFlag).Changed {
 		loginRequest.DisableAutoConnect = &autoConnectDisabled
 	}
 	if cmd.Flag(interfaceNameFlag).Changed {
 		if err := parseInterfaceName(interfaceName); err != nil {
 			return err
--- a/client/internal/auth/oauth.go
+++ b/client/internal/auth/oauth.go
@@ -26,7 +26,7 @@ type HTTPClient interface {
 }
 // AuthFlowInfo holds information for the OAuth 2.0  authorization flow
-type AuthFlowInfo struct { //nolint:revive
+type AuthFlowInfo struct {
 	DeviceCode              string `json:"device_code"`
 	UserCode                string `json:"user_code"`
 	VerificationURI         string `json:"verification_uri"`
--- a/client/internal/config.go
+++ b/client/internal/config.go
@@ -35,18 +35,15 @@ var defaultInterfaceBlacklist = []string{iface.WgInterfaceDefault, "wt", "utun",
 // ConfigInput carries configuration changes to the client
 type ConfigInput struct {
-	ManagementURL       string
+	ManagementURL    string
-	AdminURL            string
+	AdminURL         string
-	ConfigPath          string
+	ConfigPath       string
-	PreSharedKey        *string
+	PreSharedKey     *string
-	ServerSSHAllowed    *bool
+	NATExternalIPs   []string
-	NATExternalIPs      []string
+	CustomDNSAddress []byte
-	CustomDNSAddress    []byte
+	RosenpassEnabled *bool
-	RosenpassEnabled    *bool
+	InterfaceName    *string
-	RosenpassPermissive *bool
+	WireguardPort    *int
 	InterfaceName       *string
 	WireguardPort       *int
 	DisableAutoConnect  *bool
 }
 // Config Configuration type
@@ -61,8 +58,6 @@ type Config struct {
 	IFaceBlackList       []string
 	DisableIPv6Discovery bool
 	RosenpassEnabled     bool
 	RosenpassPermissive  bool
 	ServerSSHAllowed     *bool
 	// SSHKey is a private SSH key in a PEM format
 	SSHKey string
@@ -84,10 +79,6 @@ type Config struct {
 	NATExternalIPs []string
 	// CustomDNSAddress sets the DNS resolver listening address in format ip:port
 	CustomDNSAddress string
 	// DisableAutoConnect determines whether the client should not start with the service
 	// it's set to false by default due to backwards compatibility
 	DisableAutoConnect bool
 }
 // ReadConfig read config file and return with Config. If it is not exists create a new with default values
@@ -97,7 +88,6 @@ func ReadConfig(configPath string) (*Config, error) {
 		if _, err := util.ReadJson(configPath, config); err != nil {
 			return nil, err
 		}
 		return config, nil
 	}
@@ -162,8 +152,6 @@ func createNewConfig(input ConfigInput) (*Config, error) {
 		DisableIPv6Discovery: false,
 		NATExternalIPs:       input.NATExternalIPs,
 		CustomDNSAddress:     string(input.CustomDNSAddress),
 		ServerSSHAllowed:     util.False(),
 		DisableAutoConnect:   false,
 	}
 	defaultManagementURL, err := parseURL("Management URL", DefaultManagementURL)
@@ -198,14 +186,6 @@ func createNewConfig(input ConfigInput) (*Config, error) {
 		config.RosenpassEnabled = *input.RosenpassEnabled
 	}
 	if input.RosenpassPermissive != nil {
 		config.RosenpassPermissive = *input.RosenpassPermissive
 	}
 	if input.ServerSSHAllowed != nil {
 		config.ServerSSHAllowed = input.ServerSSHAllowed
 	}
 	defaultAdminURL, err := parseURL("Admin URL", DefaultAdminURL)
 	if err != nil {
 		return nil, err
@@ -300,26 +280,6 @@ func update(input ConfigInput) (*Config, error) {
 		refresh = true
 	}
 	if input.RosenpassPermissive != nil {
 		config.RosenpassPermissive = *input.RosenpassPermissive
 		refresh = true
 	}
 	if input.DisableAutoConnect != nil {
 		config.DisableAutoConnect = *input.DisableAutoConnect
 		refresh = true
 	}
 	if input.ServerSSHAllowed != nil {
 		config.ServerSSHAllowed = input.ServerSSHAllowed
 		refresh = true
 	}
 	if config.ServerSSHAllowed == nil {
 		config.ServerSSHAllowed = util.True()
 		refresh = true
 	}
 	if refresh {
 		// since we have new management URL, we need to update config file
 		if err := util.WriteJson(input.ConfigPath, config); err != nil {
--- a/client/internal/connect.go
+++ b/client/internal/connect.go
@@ -2,7 +2,6 @@ package internal
 import (
 	"context"
 	"errors"
 	"fmt"
 	"strings"
 	"time"
@@ -23,39 +22,16 @@ import (
 	mgm "github.com/netbirdio/netbird/management/client"
 	mgmProto "github.com/netbirdio/netbird/management/proto"
 	signal "github.com/netbirdio/netbird/signal/client"
 	"github.com/netbirdio/netbird/util"
 	"github.com/netbirdio/netbird/version"
 )
 // RunClient with main logic.
 func RunClient(ctx context.Context, config *Config, statusRecorder *peer.Status) error {
-	return runClient(ctx, config, statusRecorder, MobileDependency{}, nil, nil, nil, nil)
+	return runClient(ctx, config, statusRecorder, MobileDependency{})
 }
 // RunClientWithProbes runs the client's main logic with probes attached
 func RunClientWithProbes(
 	ctx context.Context,
 	config *Config,
 	statusRecorder *peer.Status,
 	mgmProbe *Probe,
 	signalProbe *Probe,
 	relayProbe *Probe,
 	wgProbe *Probe,
 ) error {
 	return runClient(ctx, config, statusRecorder, MobileDependency{}, mgmProbe, signalProbe, relayProbe, wgProbe)
 }
 // RunClientMobile with main logic on mobile system
-func RunClientMobile(
+func RunClientMobile(ctx context.Context, config *Config, statusRecorder *peer.Status, tunAdapter iface.TunAdapter, iFaceDiscover stdnet.ExternalIFaceDiscover, networkChangeListener listener.NetworkChangeListener, dnsAddresses []string, dnsReadyListener dns.ReadyListener) error {
 	ctx context.Context,
 	config *Config,
 	statusRecorder *peer.Status,
 	tunAdapter iface.TunAdapter,
 	iFaceDiscover stdnet.ExternalIFaceDiscover,
 	networkChangeListener listener.NetworkChangeListener,
 	dnsAddresses []string,
 	dnsReadyListener dns.ReadyListener,
 ) error {
 	// in case of non Android os these variables will be nil
 	mobileDependency := MobileDependency{
 		TunAdapter:            tunAdapter,
@@ -64,43 +40,21 @@ func RunClientMobile(
 		HostDNSAddresses:      dnsAddresses,
 		DnsReadyListener:      dnsReadyListener,
 	}
-	return runClient(ctx, config, statusRecorder, mobileDependency, nil, nil, nil, nil)
+	return runClient(ctx, config, statusRecorder, mobileDependency)
 }
-func RunClientiOS(
+func RunClientiOS(ctx context.Context, config *Config, statusRecorder *peer.Status, fileDescriptor int32, networkChangeListener listener.NetworkChangeListener, dnsManager dns.IosDnsManager) error {
 	ctx context.Context,
 	config *Config,
 	statusRecorder *peer.Status,
 	fileDescriptor int32,
 	networkChangeListener listener.NetworkChangeListener,
 	dnsManager dns.IosDnsManager,
 ) error {
 	mobileDependency := MobileDependency{
 		FileDescriptor:        fileDescriptor,
 		NetworkChangeListener: networkChangeListener,
 		DnsManager:            dnsManager,
 	}
-	return runClient(ctx, config, statusRecorder, mobileDependency, nil, nil, nil, nil)
+	return runClient(ctx, config, statusRecorder, mobileDependency)
 }
-func runClient(
+func runClient(ctx context.Context, config *Config, statusRecorder *peer.Status, mobileDependency MobileDependency) error {
 	ctx context.Context,
 	config *Config,
 	statusRecorder *peer.Status,
 	mobileDependency MobileDependency,
 	mgmProbe *Probe,
 	signalProbe *Probe,
 	relayProbe *Probe,
 	wgProbe *Probe,
 ) error {
 	log.Infof("starting NetBird client version %s", version.NetbirdVersion())
 	// Check if client was not shut down in a clean way and restore DNS config if required.
 	// Otherwise, we might not be able to connect to the management server to retrieve new config.
 	if err := dns.CheckUncleanShutdown(config.WgIface); err != nil {
 		log.Errorf("checking unclean shutdown error: %s", err)
 	}
 	backOff := &backoff.ExponentialBackOff{
 		InitialInterval:     time.Second,
 		RandomizationFactor: 1,
@@ -149,7 +103,7 @@ func runClient(
 		engineCtx, cancel := context.WithCancel(ctx)
 		defer func() {
-			statusRecorder.MarkManagementDisconnected(state.err)
+			statusRecorder.MarkManagementDisconnected()
 			statusRecorder.CleanLocalPeerState()
 			cancel()
 		}()
@@ -198,10 +152,8 @@ func runClient(
 		statusRecorder.UpdateSignalAddress(signalURL)
-		statusRecorder.MarkSignalDisconnected(nil)
+		statusRecorder.MarkSignalDisconnected()
-		defer func() {
+		defer statusRecorder.MarkSignalDisconnected()
 			statusRecorder.MarkSignalDisconnected(state.err)
 		}()
 		// with the global Wiretrustee config in hand connect (just a connection, no stream yet) Signal
 		signalClient, err := connectToSignal(engineCtx, loginResp.GetWiretrusteeConfig(), myPrivateKey)
@@ -229,7 +181,7 @@ func runClient(
 			return wrapErr(err)
 		}
-		engine := NewEngineWithProbes(engineCtx, cancel, signalClient, mgmClient, engineConfig, mobileDependency, statusRecorder, mgmProbe, signalProbe, relayProbe, wgProbe)
+		engine := NewEngine(engineCtx, cancel, signalClient, mgmClient, engineConfig, mobileDependency, statusRecorder)
 		err = engine.Start()
 		if err != nil {
 			log.Errorf("error while starting Netbird Connection Engine: %s", err)
@@ -252,7 +204,7 @@ func runClient(
 		log.Info("stopped NetBird client")
-		if _, err := state.Status(); errors.Is(err, ErrResetConnection) {
+		if _, err := state.Status(); err == ErrResetConnection {
 			return err
 		}
@@ -284,8 +236,6 @@ func createEngineConfig(key wgtypes.Key, config *Config, peerConfig *mgmProto.Pe
 		NATExternalIPs:       config.NATExternalIPs,
 		CustomDNSAddress:     config.CustomDNSAddress,
 		RosenpassEnabled:     config.RosenpassEnabled,
 		RosenpassPermissive:  config.RosenpassPermissive,
 		ServerSSHAllowed:     util.ReturnBoolWithDefaultTrue(config.ServerSSHAllowed),
 	}
 	if config.PreSharedKey != "" {
--- a/client/internal/dns/dbus_linux.go
+++ b/client/internal/dns/dbus_linux.go
@@ -4,11 +4,9 @@ package dns
 import (
 	"context"
 	"fmt"
 	"time"
 	"github.com/godbus/dbus/v5"
 	log "github.com/sirupsen/logrus"
 	"time"
 )
 const dbusDefaultFlag = 0
@@ -16,7 +14,6 @@ const dbusDefaultFlag = 0
 func isDbusListenerRunning(dest string, path dbus.ObjectPath) bool {
 	obj, closeConn, err := getDbusObject(dest, path)
 	if err != nil {
 		log.Tracef("error getting dbus object: %s", err)
 		return false
 	}
 	defer closeConn()
@@ -24,18 +21,14 @@ func isDbusListenerRunning(dest string, path dbus.ObjectPath) bool {
 	ctx, cancel := context.WithTimeout(context.TODO(), 5*time.Second)
 	defer cancel()
-	if err = obj.CallWithContext(ctx, "org.freedesktop.DBus.Peer.Ping", 0).Store(); err != nil {
+	err = obj.CallWithContext(ctx, "org.freedesktop.DBus.Peer.Ping", 0).Store()
-		log.Tracef("error calling dbus: %s", err)
+	return err == nil
 		return false
 	}
 	return true
 }
 func getDbusObject(dest string, path dbus.ObjectPath) (dbus.BusObject, func(), error) {
 	conn, err := dbus.SystemBus()
 	if err != nil {
-		return nil, nil, fmt.Errorf("get dbus: %w", err)
+		return nil, nil, err
 	}
 	obj := conn.Object(dest, path)
--- a/client/internal/dns/file_linux.go
+++ b/client/internal/dns/file_linux.go
@@ -3,12 +3,11 @@
 package dns
 import (
 	"bufio"
 	"bytes"
 	"fmt"
 	"net/netip"
 	"os"
 	"strings"
 	"time"
 	log "github.com/sirupsen/logrus"
 )
@@ -24,22 +23,12 @@ const (
 	fileMaxNumberOfSearchDomains = 6
 )
 const (
 	dnsFailoverTimeout  = 4 * time.Second
 	dnsFailoverAttempts = 1
 )
 type fileConfigurator struct {
-	repair *repair
+	originalPerms os.FileMode
 	originalPerms  os.FileMode
 	nbNameserverIP string
 }
 func newFileConfigurator() (hostManager, error) {
-	fc := &fileConfigurator{}
+	return &fileConfigurator{}, nil
 	fc.repair = newRepair(defaultResolvConfPath, fc.updateConfig)
 	return fc, nil
 }
 func (f *fileConfigurator) supportCustomPort() bool {
@@ -57,7 +46,7 @@ func (f *fileConfigurator) applyDNSConfig(config HostDNSConfig) error {
 		if backupFileExist {
 			err = f.restore()
 			if err != nil {
-				return fmt.Errorf("unable to configure DNS for this peer using file manager without a Primary nameserver group. Restoring the original file return err: %w", err)
+				return fmt.Errorf("unable to configure DNS for this peer using file manager without a Primary nameserver group. Restoring the original file return err: %s", err)
 			}
 		}
 		return fmt.Errorf("unable to configure DNS for this peer using file manager without a nameserver group with all domains configured")
@@ -66,150 +55,66 @@ func (f *fileConfigurator) applyDNSConfig(config HostDNSConfig) error {
 	if !backupFileExist {
 		err = f.backup()
 		if err != nil {
-			return fmt.Errorf("unable to backup the resolv.conf file: %w", err)
+			return fmt.Errorf("unable to backup the resolv.conf file")
 		}
 	}
-	nbSearchDomains := searchDomains(config)
+	searchDomainList := searchDomains(config)
 	f.nbNameserverIP = config.ServerIP
-	resolvConf, err := parseBackupResolvConf()
+	originalSearchDomains, nameServers, others, err := originalDNSConfigs(fileDefaultResolvConfBackupLocation)
 	if err != nil {
-		log.Errorf("could not read original search domains from %s: %s", fileDefaultResolvConfBackupLocation, err)
+		log.Error(err)
 	}
-	f.repair.stopWatchFileChanges()
+	searchDomainList = mergeSearchDomains(searchDomainList, originalSearchDomains)
 	err = f.updateConfig(nbSearchDomains, f.nbNameserverIP, resolvConf)
 	if err != nil {
 		return err
 	}
 	f.repair.watchFileChanges(nbSearchDomains, f.nbNameserverIP)
 	return nil
 }
 func (f *fileConfigurator) updateConfig(nbSearchDomains []string, nbNameserverIP string, cfg *resolvConf) error {
 	searchDomainList := mergeSearchDomains(nbSearchDomains, cfg.searchDomains)
 	nameServers := generateNsList(nbNameserverIP, cfg)
 	options := prepareOptionsWithTimeout(cfg.others, int(dnsFailoverTimeout.Seconds()), dnsFailoverAttempts)
 	buf := prepareResolvConfContent(
 		searchDomainList,
-		nameServers,
+		append([]string{config.ServerIP}, nameServers...),
-		options)
+		others)
 	log.Debugf("creating managed file %s", defaultResolvConfPath)
-	err := os.WriteFile(defaultResolvConfPath, buf.Bytes(), f.originalPerms)
+	err = os.WriteFile(defaultResolvConfPath, buf.Bytes(), f.originalPerms)
 	if err != nil {
 		restoreErr := f.restore()
 		if restoreErr != nil {
 			log.Errorf("attempt to restore default file failed with error: %s", err)
 		}
-		return fmt.Errorf("creating resolver file %s. Error: %w", defaultResolvConfPath, err)
+		return fmt.Errorf("got an creating resolver file %s. Error: %s", defaultResolvConfPath, err)
 	}
 	log.Infof("created a NetBird managed %s file with the DNS settings. Added %d search domains. Search list: %s", defaultResolvConfPath, len(searchDomainList), searchDomainList)
 	// create another backup for unclean shutdown detection right after overwriting the original resolv.conf
 	if err := createUncleanShutdownIndicator(fileDefaultResolvConfBackupLocation, fileManager, nbNameserverIP); err != nil {
 		log.Errorf("failed to create unclean shutdown resolv.conf backup: %s", err)
 	}
 	log.Infof("created a NetBird managed %s file with your DNS settings. Added %d search domains. Search list: %s", defaultResolvConfPath, len(searchDomainList), searchDomainList)
 	return nil
 }
 func (f *fileConfigurator) restoreHostDNS() error {
 	f.repair.stopWatchFileChanges()
 	return f.restore()
 }
 func (f *fileConfigurator) backup() error {
 	stats, err := os.Stat(defaultResolvConfPath)
 	if err != nil {
-		return fmt.Errorf("checking stats for %s file. Error: %w", defaultResolvConfPath, err)
+		return fmt.Errorf("got an error while checking stats for %s file. Error: %s", defaultResolvConfPath, err)
 	}
 	f.originalPerms = stats.Mode()
 	err = copyFile(defaultResolvConfPath, fileDefaultResolvConfBackupLocation)
 	if err != nil {
-		return fmt.Errorf("backing up %s: %w", defaultResolvConfPath, err)
+		return fmt.Errorf("got error while backing up the %s file. Error: %s", defaultResolvConfPath, err)
 	}
 	return nil
 }
 func (f *fileConfigurator) restore() error {
-	err := removeFirstNbNameserver(fileDefaultResolvConfBackupLocation, f.nbNameserverIP)
+	err := copyFile(fileDefaultResolvConfBackupLocation, defaultResolvConfPath)
 	if err != nil {
-		log.Errorf("Failed to remove netbird nameserver from %s on backup restore: %s", fileDefaultResolvConfBackupLocation, err)
+		return fmt.Errorf("got error while restoring the %s file from %s. Error: %s", defaultResolvConfPath, fileDefaultResolvConfBackupLocation, err)
 	}
 	err = copyFile(fileDefaultResolvConfBackupLocation, defaultResolvConfPath)
 	if err != nil {
 		return fmt.Errorf("restoring %s from %s: %w", defaultResolvConfPath, fileDefaultResolvConfBackupLocation, err)
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown resolv.conf backup: %s", err)
 	}
 	return os.RemoveAll(fileDefaultResolvConfBackupLocation)
 }
 func (f *fileConfigurator) restoreUncleanShutdownDNS(storedDNSAddress *netip.Addr) error {
 	resolvConf, err := parseDefaultResolvConf()
 	if err != nil {
 		return fmt.Errorf("parse current resolv.conf: %w", err)
 	}
 	// no current nameservers set -> restore
 	if len(resolvConf.nameServers) == 0 {
 		return restoreResolvConfFile()
 	}
 	currentDNSAddress, err := netip.ParseAddr(resolvConf.nameServers[0])
 	// not a valid first nameserver -> restore
 	if err != nil {
 		log.Errorf("restoring unclean shutdown: parse dns address %s failed: %s", resolvConf.nameServers[0], err)
 		return restoreResolvConfFile()
 	}
 	// current address is still netbird's non-available dns address -> restore
 	// comparing parsed addresses only, to remove ambiguity
 	if currentDNSAddress.String() == storedDNSAddress.String() {
 		return restoreResolvConfFile()
 	}
 	log.Info("restoring unclean shutdown: first current nameserver differs from saved nameserver pre-netbird: not restoring")
 	return nil
 }
 func restoreResolvConfFile() error {
 	log.Debugf("restoring unclean shutdown: restoring %s from %s", defaultResolvConfPath, fileUncleanShutdownResolvConfLocation)
 	if err := copyFile(fileUncleanShutdownResolvConfLocation, defaultResolvConfPath); err != nil {
 		return fmt.Errorf("restoring %s from %s: %w", defaultResolvConfPath, fileUncleanShutdownResolvConfLocation, err)
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown resolv.conf file: %s", err)
 	}
 	return nil
 }
 // generateNsList generates a list of nameservers from the config and adds the primary nameserver to the beginning of the list
 func generateNsList(nbNameserverIP string, cfg *resolvConf) []string {
 	ns := make([]string, 1, len(cfg.nameServers)+1)
 	ns[0] = nbNameserverIP
 	for _, cfgNs := range cfg.nameServers {
 		if nbNameserverIP != cfgNs {
 			ns = append(ns, cfgNs)
 		}
 	}
 	return ns
 }
 func prepareResolvConfContent(searchDomains, nameServers, others []string) bytes.Buffer {
 	var buf bytes.Buffer
 	buf.WriteString(fileGeneratedResolvConfContentHeaderNextLine)
@@ -245,6 +150,70 @@ func searchDomains(config HostDNSConfig) []string {
 	return listOfDomains
 }
 func originalDNSConfigs(resolvconfFile string) (searchDomains, nameServers, others []string, err error) {
 	file, err := os.Open(resolvconfFile)
 	if err != nil {
 		err = fmt.Errorf(`could not read existing resolv.conf`)
 		return
 	}
 	defer file.Close()
 	reader := bufio.NewReader(file)
 	for {
 		lineBytes, isPrefix, readErr := reader.ReadLine()
 		if readErr != nil {
 			break
 		}
 		if isPrefix {
 			err = fmt.Errorf(`resolv.conf line too long`)
 			return
 		}
 		line := strings.TrimSpace(string(lineBytes))
 		if strings.HasPrefix(line, "#") {
 			continue
 		}
 		if strings.HasPrefix(line, "domain") {
 			continue
 		}
 		if strings.HasPrefix(line, "options") && strings.Contains(line, "rotate") {
 			line = strings.ReplaceAll(line, "rotate", "")
 			splitLines := strings.Fields(line)
 			if len(splitLines) == 1 {
 				continue
 			}
 			line = strings.Join(splitLines, " ")
 		}
 		if strings.HasPrefix(line, "search") {
 			splitLines := strings.Fields(line)
 			if len(splitLines) < 2 {
 				continue
 			}
 			searchDomains = splitLines[1:]
 			continue
 		}
 		if strings.HasPrefix(line, "nameserver") {
 			splitLines := strings.Fields(line)
 			if len(splitLines) != 2 {
 				continue
 			}
 			nameServers = append(nameServers, splitLines[1])
 			continue
 		}
 		others = append(others, line)
 	}
 	return
 }
 // merge search Domains lists and cut off the list if it is too long
 func mergeSearchDomains(searchDomains []string, originalSearchDomains []string) []string {
 	lineSize := len("search")
@@ -261,19 +230,6 @@ func mergeSearchDomains(searchDomains []string, originalSearchDomains []string)
 // return with the number of characters in the searchDomains line
 func validateAndFillSearchDomains(initialLineChars int, s *[]string, vs []string) int {
 	for _, sd := range vs {
 		duplicated := false
 		for _, fs := range *s {
 			if fs == sd {
 				duplicated = true
 				break
 			}
 		}
 		if duplicated {
 			continue
 		}
 		tmpCharsNumber := initialLineChars + 1 + len(sd)
 		if tmpCharsNumber > fileMaxLineCharsLimit {
 			// lets log all skipped Domains
@@ -290,39 +246,23 @@ func validateAndFillSearchDomains(initialLineChars int, s *[]string, vs []string
 		}
 		*s = append(*s, sd)
 	}
 	return initialLineChars
 }
 func copyFile(src, dest string) error {
 	stats, err := os.Stat(src)
 	if err != nil {
-		return fmt.Errorf("checking stats for %s file when copying it. Error: %s", src, err)
+		return fmt.Errorf("got an error while checking stats for %s file when copying it. Error: %s", src, err)
 	}
 	bytesRead, err := os.ReadFile(src)
 	if err != nil {
-		return fmt.Errorf("reading the file %s file for copy. Error: %s", src, err)
+		return fmt.Errorf("got an error while reading the file %s file for copy. Error: %s", src, err)
 	}
 	err = os.WriteFile(dest, bytesRead, stats.Mode())
 	if err != nil {
-		return fmt.Errorf("writing the destination file %s for copy. Error: %s", dest, err)
+		return fmt.Errorf("got an writing the destination file %s for copy. Error: %s", dest, err)
 	}
 	return nil
 }
 func isContains(subList []string, list []string) bool {
 	for _, sl := range subList {
 		var found bool
 		for _, l := range list {
 			if sl == l {
 				found = true
 			}
 		}
 		if !found {
 			return false
 		}
 	}
 	return true
 }
--- a/client/internal/dns/file_linux_test.go
+++ b/client/internal/dns/file_linux_test.go
@@ -1,5 +1,3 @@
 //go:build !android
 package dns
 import (
@@ -9,7 +7,7 @@ import (
 func Test_mergeSearchDomains(t *testing.T) {
 	searchDomains := []string{"a", "b"}
-	originDomains := []string{"c", "d"}
+	originDomains := []string{"a", "b"}
 	mergedDomains := mergeSearchDomains(searchDomains, originDomains)
 	if len(mergedDomains) != 4 {
 		t.Errorf("invalid len of result domains: %d, want: %d", len(mergedDomains), 4)
@@ -51,67 +49,6 @@ func Test_mergeSearchTooLongDomain(t *testing.T) {
 	}
 }
 func Test_isContains(t *testing.T) {
 	type args struct {
 		subList []string
 		list    []string
 	}
 	tests := []struct {
 		args args
 		want bool
 	}{
 		{
 			args: args{
 				subList: []string{"a", "b", "c"},
 				list:    []string{"a", "b", "c"},
 			},
 			want: true,
 		},
 		{
 			args: args{
 				subList: []string{"a"},
 				list:    []string{"a", "b", "c"},
 			},
 			want: true,
 		},
 		{
 			args: args{
 				subList: []string{"d"},
 				list:    []string{"a", "b", "c"},
 			},
 			want: false,
 		},
 		{
 			args: args{
 				subList: []string{"a"},
 				list:    []string{},
 			},
 			want: false,
 		},
 		{
 			args: args{
 				subList: []string{},
 				list:    []string{"b"},
 			},
 			want: true,
 		},
 		{
 			args: args{
 				subList: []string{},
 				list:    []string{},
 			},
 			want: true,
 		},
 	}
 	for _, tt := range tests {
 		t.Run("list check test", func(t *testing.T) {
 			if got := isContains(tt.args.subList, tt.args.list); got != tt.want {
 				t.Errorf("isContains() = %v, want %v", got, tt.want)
 			}
 		})
 	}
 }
 func getLongLine() string {
 	x := "search "
 	for {
--- a/client/internal/dns/file_parser_linux.go
+++ b/client/internal/dns/file_parser_linux.go
@@ -1,168 +0,0 @@
 //go:build !android
 package dns
 import (
 	"fmt"
 	"os"
 	"regexp"
 	"strings"
 	log "github.com/sirupsen/logrus"
 )
 const (
 	defaultResolvConfPath = "/etc/resolv.conf"
 )
 var timeoutRegex = regexp.MustCompile(`timeout:\d+`)
 var attemptsRegex = regexp.MustCompile(`attempts:\d+`)
 type resolvConf struct {
 	nameServers   []string
 	searchDomains []string
 	others        []string
 }
 func (r *resolvConf) String() string {
 	return fmt.Sprintf("search domains: %v, name servers: %v, others: %s", r.searchDomains, r.nameServers, r.others)
 }
 func parseDefaultResolvConf() (*resolvConf, error) {
 	return parseResolvConfFile(defaultResolvConfPath)
 }
 func parseBackupResolvConf() (*resolvConf, error) {
 	return parseResolvConfFile(fileDefaultResolvConfBackupLocation)
 }
 func parseResolvConfFile(resolvConfFile string) (*resolvConf, error) {
 	rconf := &resolvConf{
 		searchDomains: make([]string, 0),
 		nameServers:   make([]string, 0),
 		others:        make([]string, 0),
 	}
 	file, err := os.Open(resolvConfFile)
 	if err != nil {
 		return rconf, fmt.Errorf("failed to open %s file: %w", resolvConfFile, err)
 	}
 	defer func() {
 		if err := file.Close(); err != nil {
 			log.Errorf("failed closing %s: %s", resolvConfFile, err)
 		}
 	}()
 	cur, err := os.ReadFile(resolvConfFile)
 	if err != nil {
 		return rconf, fmt.Errorf("failed to read %s file: %w", resolvConfFile, err)
 	}
 	if len(cur) == 0 {
 		return rconf, fmt.Errorf("file is empty")
 	}
 	for _, line := range strings.Split(string(cur), "\n") {
 		line = strings.TrimSpace(line)
 		if strings.HasPrefix(line, "#") {
 			continue
 		}
 		if strings.HasPrefix(line, "domain") {
 			continue
 		}
 		if strings.HasPrefix(line, "options") && strings.Contains(line, "rotate") {
 			line = strings.ReplaceAll(line, "rotate", "")
 			splitLines := strings.Fields(line)
 			if len(splitLines) == 1 {
 				continue
 			}
 			line = strings.Join(splitLines, " ")
 		}
 		if strings.HasPrefix(line, "search") {
 			splitLines := strings.Fields(line)
 			if len(splitLines) < 2 {
 				continue
 			}
 			rconf.searchDomains = splitLines[1:]
 			continue
 		}
 		if strings.HasPrefix(line, "nameserver") {
 			splitLines := strings.Fields(line)
 			if len(splitLines) != 2 {
 				continue
 			}
 			rconf.nameServers = append(rconf.nameServers, splitLines[1])
 			continue
 		}
 		if line != "" {
 			rconf.others = append(rconf.others, line)
 		}
 	}
 	return rconf, nil
 }
 // prepareOptionsWithTimeout appends timeout to existing options if it doesn't exist,
 // otherwise it adds a new option with timeout and attempts.
 func prepareOptionsWithTimeout(input []string, timeout int, attempts int) []string {
 	configs := make([]string, len(input))
 	copy(configs, input)
 	for i, config := range configs {
 		if strings.HasPrefix(config, "options") {
 			config = strings.ReplaceAll(config, "rotate", "")
 			config = strings.Join(strings.Fields(config), " ")
 			if strings.Contains(config, "timeout:") {
 				config = timeoutRegex.ReplaceAllString(config, fmt.Sprintf("timeout:%d", timeout))
 			} else {
 				config = strings.Replace(config, "options ", fmt.Sprintf("options timeout:%d ", timeout), 1)
 			}
 			if strings.Contains(config, "attempts:") {
 				config = attemptsRegex.ReplaceAllString(config, fmt.Sprintf("attempts:%d", attempts))
 			} else {
 				config = strings.Replace(config, "options ", fmt.Sprintf("options attempts:%d ", attempts), 1)
 			}
 			configs[i] = config
 			return configs
 		}
 	}
 	return append(configs, fmt.Sprintf("options timeout:%d attempts:%d", timeout, attempts))
 }
 // removeFirstNbNameserver removes the given nameserver from the given file if it is in the first position
 // and writes the file back to the original location
 func removeFirstNbNameserver(filename, nameserverIP string) error {
 	resolvConf, err := parseResolvConfFile(filename)
 	if err != nil {
 		return fmt.Errorf("parse backup resolv.conf: %w", err)
 	}
 	content, err := os.ReadFile(filename)
 	if err != nil {
 		return fmt.Errorf("read %s: %w", filename, err)
 	}
 	if len(resolvConf.nameServers) > 1 && resolvConf.nameServers[0] == nameserverIP {
 		newContent := strings.Replace(string(content), fmt.Sprintf("nameserver %s\n", nameserverIP), "", 1)
 		stat, err := os.Stat(filename)
 		if err != nil {
 			return fmt.Errorf("stat %s: %w", filename, err)
 		}
 		if err := os.WriteFile(filename, []byte(newContent), stat.Mode()); err != nil {
 			return fmt.Errorf("write %s: %w", filename, err)
 		}
 	}
 	return nil
 }
--- a/client/internal/dns/file_parser_linux_test.go
+++ b/client/internal/dns/file_parser_linux_test.go
@@ -1,304 +0,0 @@
 //go:build !android
 package dns
 import (
 	"os"
 	"path/filepath"
 	"testing"
 	"github.com/stretchr/testify/assert"
 )
 func Test_parseResolvConf(t *testing.T) {
 	testCases := []struct {
 		input          string
 		expectedSearch []string
 		expectedNS     []string
 		expectedOther  []string
 	}{
 		{
 			input: `domain example.org
 search example.org
 nameserver 192.168.0.1
 `,
 			expectedSearch: []string{"example.org"},
 			expectedNS:     []string{"192.168.0.1"},
 			expectedOther:  []string{},
 		},
 		{
 			input: `# This is /run/systemd/resolve/resolv.conf managed by man:systemd-resolved(8).
 # Do not edit.
 #
 # This file might be symlinked as /etc/resolv.conf. If you're looking at
 # /etc/resolv.conf and seeing this text, you have followed the symlink.
 #
 # This is a dynamic resolv.conf file for connecting local clients directly to
 # all known uplink DNS servers. This file lists all configured search domains.
 #
 # Third party programs should typically not access this file directly, but only
 # through the symlink at /etc/resolv.conf. To manage man:resolv.conf(5) in a
 # different way, replace this symlink by a static file or a different symlink.
 #
 # See man:systemd-resolved.service(8) for details about the supported modes of
 # operation for /etc/resolv.conf.
 nameserver 192.168.2.1
 nameserver 100.81.99.197
 search netbird.cloud
 `,
 			expectedSearch: []string{"netbird.cloud"},
 			expectedNS:     []string{"192.168.2.1", "100.81.99.197"},
 			expectedOther:  []string{},
 		},
 		{
 			input: `# This is /run/systemd/resolve/resolv.conf managed by man:systemd-resolved(8).
 # Do not edit.
 #
 # This file might be symlinked as /etc/resolv.conf. If you're looking at
 # /etc/resolv.conf and seeing this text, you have followed the symlink.
 #
 # This is a dynamic resolv.conf file for connecting local clients directly to
 # all known uplink DNS servers. This file lists all configured search domains.
 #
 # Third party programs should typically not access this file directly, but only
 # through the symlink at /etc/resolv.conf. To manage man:resolv.conf(5) in a
 # different way, replace this symlink by a static file or a different symlink.
 #
 # See man:systemd-resolved.service(8) for details about the supported modes of
 # operation for /etc/resolv.conf.
 nameserver 192.168.2.1
 nameserver 100.81.99.197
 search netbird.cloud
 options debug
 `,
 			expectedSearch: []string{"netbird.cloud"},
 			expectedNS:     []string{"192.168.2.1", "100.81.99.197"},
 			expectedOther:  []string{"options debug"},
 		},
 	}
 	for _, testCase := range testCases {
 		testCase := testCase
 		t.Run("test", func(t *testing.T) {
 			t.Parallel()
 			tmpResolvConf := filepath.Join(t.TempDir(), "resolv.conf")
 			err := os.WriteFile(tmpResolvConf, []byte(testCase.input), 0644)
 			if err != nil {
 				t.Fatal(err)
 			}
 			cfg, err := parseResolvConfFile(tmpResolvConf)
 			if err != nil {
 				t.Fatal(err)
 			}
 			ok := compareLists(cfg.searchDomains, testCase.expectedSearch)
 			if !ok {
 				t.Errorf("invalid parse result for search domains, expected: %v, got: %v", testCase.expectedSearch, cfg.searchDomains)
 			}
 			ok = compareLists(cfg.nameServers, testCase.expectedNS)
 			if !ok {
 				t.Errorf("invalid parse result for ns domains, expected: %v, got: %v", testCase.expectedNS, cfg.nameServers)
 			}
 			ok = compareLists(cfg.others, testCase.expectedOther)
 			if !ok {
 				t.Errorf("invalid parse result for others, expected: %v, got: %v", testCase.expectedOther, cfg.others)
 			}
 		})
 	}
 }
 func compareLists(search []string, search2 []string) bool {
 	if len(search) != len(search2) {
 		return false
 	}
 	for i, v := range search {
 		if v != search2[i] {
 			return false
 		}
 	}
 	return true
 }
 func Test_emptyFile(t *testing.T) {
 	cfg, err := parseResolvConfFile("/tmp/nothing")
 	if err == nil {
 		t.Errorf("expected error, got nil")
 	}
 	if len(cfg.others) != 0 || len(cfg.searchDomains) != 0 || len(cfg.nameServers) != 0 {
 		t.Errorf("expected empty config, got %v", cfg)
 	}
 }
 func Test_symlink(t *testing.T) {
 	input := `# This is /run/systemd/resolve/resolv.conf managed by man:systemd-resolved(8).
 # Do not edit.
 #
 # This file might be symlinked as /etc/resolv.conf. If you're looking at
 # /etc/resolv.conf and seeing this text, you have followed the symlink.
 #
 # This is a dynamic resolv.conf file for connecting local clients directly to
 # all known uplink DNS servers. This file lists all configured search domains.
 #
 # Third party programs should typically not access this file directly, but only
 # through the symlink at /etc/resolv.conf. To manage man:resolv.conf(5) in a
 # different way, replace this symlink by a static file or a different symlink.
 #
 # See man:systemd-resolved.service(8) for details about the supported modes of
 # operation for /etc/resolv.conf.
 nameserver 192.168.0.1
 `
 	tmpResolvConf := filepath.Join(t.TempDir(), "resolv.conf")
 	err := os.WriteFile(tmpResolvConf, []byte(input), 0644)
 	if err != nil {
 		t.Fatal(err)
 	}
 	tmpLink := filepath.Join(t.TempDir(), "symlink")
 	err = os.Symlink(tmpResolvConf, tmpLink)
 	if err != nil {
 		t.Fatal(err)
 	}
 	cfg, err := parseResolvConfFile(tmpLink)
 	if err != nil {
 		t.Fatal(err)
 	}
 	if len(cfg.nameServers) != 1 {
 		t.Errorf("unexpected resolv.conf content: %v", cfg)
 	}
 }
 func TestPrepareOptionsWithTimeout(t *testing.T) {
 	tests := []struct {
 		name     string
 		others   []string
 		timeout  int
 		attempts int
 		expected []string
 	}{
 		{
 			name:     "Append new options with timeout and attempts",
 			others:   []string{"some config"},
 			timeout:  2,
 			attempts: 2,
 			expected: []string{"some config", "options timeout:2 attempts:2"},
 		},
 		{
 			name:     "Modify existing options to exclude rotate and include timeout and attempts",
 			others:   []string{"some config", "options rotate someother"},
 			timeout:  3,
 			attempts: 2,
 			expected: []string{"some config", "options attempts:2 timeout:3 someother"},
 		},
 		{
 			name:     "Existing options with timeout and attempts are updated",
 			others:   []string{"some config", "options timeout:4 attempts:3"},
 			timeout:  5,
 			attempts: 4,
 			expected: []string{"some config", "options timeout:5 attempts:4"},
 		},
 		{
 			name:     "Modify existing options, add missing attempts before timeout",
 			others:   []string{"some config", "options timeout:4"},
 			timeout:  4,
 			attempts: 3,
 			expected: []string{"some config", "options attempts:3 timeout:4"},
 		},
 	}
 	for _, tc := range tests {
 		t.Run(tc.name, func(t *testing.T) {
 			result := prepareOptionsWithTimeout(tc.others, tc.timeout, tc.attempts)
 			assert.Equal(t, tc.expected, result)
 		})
 	}
 }
 func TestRemoveFirstNbNameserver(t *testing.T) {
 	testCases := []struct {
 		name       string
 		content    string
 		ipToRemove string
 		expected   string
 	}{
 		{
 			name: "Unrelated nameservers with comments and options",
 			content: `# This is a comment
 options rotate
 nameserver 1.1.1.1
 # Another comment
 nameserver 8.8.4.4
 search example.com`,
 			ipToRemove: "9.9.9.9",
 			expected: `# This is a comment
 options rotate
 nameserver 1.1.1.1
 # Another comment
 nameserver 8.8.4.4
 search example.com`,
 		},
 		{
 			name: "First nameserver matches",
 			content: `search example.com
 nameserver 9.9.9.9
 # oof, a comment
 nameserver 8.8.4.4
 options attempts:5`,
 			ipToRemove: "9.9.9.9",
 			expected: `search example.com
 # oof, a comment
 nameserver 8.8.4.4
 options attempts:5`,
 		},
 		{
 			name: "Target IP not the first nameserver",
 			// nolint:dupword
 			content: `# Comment about the first nameserver
 nameserver 8.8.4.4
 # Comment before our target
 nameserver 9.9.9.9
 options timeout:2`,
 			ipToRemove: "9.9.9.9",
 			// nolint:dupword
 			expected: `# Comment about the first nameserver
 nameserver 8.8.4.4
 # Comment before our target
 nameserver 9.9.9.9
 options timeout:2`,
 		},
 		{
 			name: "Only nameserver matches",
 			content: `options debug
 nameserver 9.9.9.9
 search localdomain`,
 			ipToRemove: "9.9.9.9",
 			expected: `options debug
 nameserver 9.9.9.9
 search localdomain`,
 		},
 	}
 	for _, tc := range testCases {
 		t.Run(tc.name, func(t *testing.T) {
 			tempDir := t.TempDir()
 			tempFile := filepath.Join(tempDir, "resolv.conf")
 			err := os.WriteFile(tempFile, []byte(tc.content), 0644)
 			assert.NoError(t, err)
 			err = removeFirstNbNameserver(tempFile, tc.ipToRemove)
 			assert.NoError(t, err)
 			content, err := os.ReadFile(tempFile)
 			assert.NoError(t, err)
 			assert.Equal(t, tc.expected, string(content), "The resulting content should match the expected output.")
 		})
 	}
 }
--- a/client/internal/dns/file_repair_linux.go
+++ b/client/internal/dns/file_repair_linux.go
@@ -1,159 +0,0 @@
 //go:build !android
 package dns
 import (
 	"path"
 	"path/filepath"
 	"sync"
 	"github.com/fsnotify/fsnotify"
 	log "github.com/sirupsen/logrus"
 )
 var (
 	eventTypes = []fsnotify.Op{
 		fsnotify.Create,
 		fsnotify.Write,
 		fsnotify.Remove,
 		fsnotify.Rename,
 	}
 )
 type repairConfFn func([]string, string, *resolvConf) error
 type repair struct {
 	operationFile string
 	updateFn      repairConfFn
 	watchDir      string
 	inotify   *fsnotify.Watcher
 	inotifyWg sync.WaitGroup
 }
 func newRepair(operationFile string, updateFn repairConfFn) *repair {
 	targetFile := targetFile(operationFile)
 	return &repair{
 		operationFile: targetFile,
 		watchDir:      path.Dir(targetFile),
 		updateFn:      updateFn,
 	}
 }
 func (f *repair) watchFileChanges(nbSearchDomains []string, nbNameserverIP string) {
 	if f.inotify != nil {
 		return
 	}
 	log.Infof("start to watch resolv.conf: %s", f.operationFile)
 	inotify, err := fsnotify.NewWatcher()
 	if err != nil {
 		log.Errorf("failed to start inotify watcher for resolv.conf: %s", err)
 		return
 	}
 	f.inotify = inotify
 	f.inotifyWg.Add(1)
 	go func() {
 		defer f.inotifyWg.Done()
 		for event := range f.inotify.Events {
 			if !f.isEventRelevant(event) {
 				continue
 			}
 			log.Tracef("%s changed, check if it is broken", f.operationFile)
 			rConf, err := parseResolvConfFile(f.operationFile)
 			if err != nil {
 				log.Warnf("failed to parse resolv conf: %s", err)
 				continue
 			}
 			log.Debugf("check resolv.conf parameters: %s", rConf)
 			if !isNbParamsMissing(nbSearchDomains, nbNameserverIP, rConf) {
 				log.Tracef("resolv.conf still correct, skip the update")
 				continue
 			}
 			log.Info("broken params in resolv.conf, repairing it...")
 			err = f.inotify.Remove(f.watchDir)
 			if err != nil {
 				log.Errorf("failed to rm inotify watch for resolv.conf: %s", err)
 			}
 			err = f.updateFn(nbSearchDomains, nbNameserverIP, rConf)
 			if err != nil {
 				log.Errorf("failed to repair resolv.conf: %v", err)
 			}
 			err = f.inotify.Add(f.watchDir)
 			if err != nil {
 				log.Errorf("failed to re-add inotify watch for resolv.conf: %s", err)
 				return
 			}
 		}
 	}()
 	err = f.inotify.Add(f.watchDir)
 	if err != nil {
 		log.Errorf("failed to add inotify watch for resolv.conf: %s", err)
 		return
 	}
 }
 func (f *repair) stopWatchFileChanges() {
 	if f.inotify == nil {
 		return
 	}
 	err := f.inotify.Close()
 	if err != nil {
 		log.Warnf("failed to close resolv.conf inotify: %v", err)
 	}
 	f.inotifyWg.Wait()
 	f.inotify = nil
 }
 func (f *repair) isEventRelevant(event fsnotify.Event) bool {
 	var ok bool
 	for _, et := range eventTypes {
 		if event.Has(et) {
 			ok = true
 			break
 		}
 	}
 	if !ok {
 		return false
 	}
 	if event.Name == f.operationFile {
 		return true
 	}
 	return false
 }
 // nbParamsAreMissing checks if the resolv.conf file contains all the parameters that NetBird needs
 // check the NetBird related nameserver IP at the first place
 // check the NetBird related search domains in the search domains list
 func isNbParamsMissing(nbSearchDomains []string, nbNameserverIP string, rConf *resolvConf) bool {
 	if !isContains(nbSearchDomains, rConf.searchDomains) {
 		return true
 	}
 	if len(rConf.nameServers) == 0 {
 		return true
 	}
 	if rConf.nameServers[0] != nbNameserverIP {
 		return true
 	}
 	return false
 }
 func targetFile(filename string) string {
 	target, err := filepath.EvalSymlinks(filename)
 	if err != nil {
 		log.Errorf("evarl err: %s", err)
 	}
 	return target
 }
--- a/client/internal/dns/file_repair_linux_test.go
+++ b/client/internal/dns/file_repair_linux_test.go
@@ -1,175 +0,0 @@
 //go:build !android
 package dns
 import (
 	"context"
 	"os"
 	"path/filepath"
 	"testing"
 	"time"
 	"github.com/netbirdio/netbird/util"
 )
 func TestMain(m *testing.M) {
 	_ = util.InitLog("debug", "console")
 	code := m.Run()
 	os.Exit(code)
 }
 func Test_newRepairtmp(t *testing.T) {
 	type args struct {
 		resolvConfContent  string
 		touchedConfContent string
 		wantChange         bool
 	}
 	tests := []args{
 		{
 			resolvConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			touchedConfContent: `
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			wantChange: true,
 		},
 		{
 			resolvConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			touchedConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something somethingelse`,
 			wantChange: false,
 		},
 		{
 			resolvConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			touchedConfContent: `
 nameserver 10.0.0.1
 searchdomain netbird.cloud something`,
 			wantChange: false,
 		},
 		{
 			resolvConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			touchedConfContent: `
 searchdomain something`,
 			wantChange: true,
 		},
 		{
 			resolvConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			touchedConfContent: `
 nameserver 10.0.0.1`,
 			wantChange: true,
 		},
 		{
 			resolvConfContent: `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`,
 			touchedConfContent: `
 nameserver 8.8.8.8`,
 			wantChange: true,
 		},
 	}
 	for _, tt := range tests {
 		tt := tt
 		t.Run("test", func(t *testing.T) {
 			t.Parallel()
 			workDir := t.TempDir()
 			operationFile := workDir + "/resolv.conf"
 			err := os.WriteFile(operationFile, []byte(tt.resolvConfContent), 0755)
 			if err != nil {
 				t.Fatalf("failed to write out resolv.conf: %s", err)
 			}
 			var changed bool
 			ctx, cancel := context.WithTimeout(context.Background(), time.Second)
 			updateFn := func([]string, string, *resolvConf) error {
 				changed = true
 				cancel()
 				return nil
 			}
 			r := newRepair(operationFile, updateFn)
 			r.watchFileChanges([]string{"netbird.cloud"}, "10.0.0.1")
 			err = os.WriteFile(operationFile, []byte(tt.touchedConfContent), 0755)
 			if err != nil {
 				t.Fatalf("failed to write out resolv.conf: %s", err)
 			}
 			<-ctx.Done()
 			r.stopWatchFileChanges()
 			if changed != tt.wantChange {
 				t.Errorf("unexpected result: want: %v, got: %v", tt.wantChange, changed)
 			}
 		})
 	}
 }
 func Test_newRepairSymlink(t *testing.T) {
 	resolvConfContent := `
 nameserver 10.0.0.1
 nameserver 8.8.8.8
 searchdomain netbird.cloud something`
 	modifyContent := `nameserver 8.8.8.8`
 	tmpResolvConf := filepath.Join(t.TempDir(), "resolv.conf")
 	err := os.WriteFile(tmpResolvConf, []byte(resolvConfContent), 0644)
 	if err != nil {
 		t.Fatal(err)
 	}
 	tmpLink := filepath.Join(t.TempDir(), "symlink")
 	err = os.Symlink(tmpResolvConf, tmpLink)
 	if err != nil {
 		t.Fatal(err)
 	}
 	var changed bool
 	ctx, cancel := context.WithTimeout(context.Background(), time.Second)
 	updateFn := func([]string, string, *resolvConf) error {
 		changed = true
 		cancel()
 		return nil
 	}
 	r := newRepair(tmpLink, updateFn)
 	r.watchFileChanges([]string{"netbird.cloud"}, "10.0.0.1")
 	err = os.WriteFile(tmpLink, []byte(modifyContent), 0755)
 	if err != nil {
 		t.Fatalf("failed to write out resolv.conf: %s", err)
 	}
 	<-ctx.Done()
 	r.stopWatchFileChanges()
 	if changed != true {
 		t.Errorf("unexpected result: want: %v, got: %v", true, false)
 	}
 }
--- a/client/internal/dns/host.go
+++ b/client/internal/dns/host.go
@@ -2,7 +2,6 @@ package dns
 import (
 	"fmt"
 	"net/netip"
 	"strings"
 	nbdns "github.com/netbirdio/netbird/dns"
@@ -12,7 +11,6 @@ type hostManager interface {
 	applyDNSConfig(config HostDNSConfig) error
 	restoreHostDNS() error
 	supportCustomPort() bool
 	restoreUncleanShutdownDNS(storedDNSAddress *netip.Addr) error
 }
 type HostDNSConfig struct {
@@ -29,10 +27,9 @@ type DomainConfig struct {
 }
 type mockHostConfigurator struct {
-	applyDNSConfigFunc            func(config HostDNSConfig) error
+	applyDNSConfigFunc    func(config HostDNSConfig) error
-	restoreHostDNSFunc            func() error
+	restoreHostDNSFunc    func() error
-	supportCustomPortFunc         func() bool
+	supportCustomPortFunc func() bool
 	restoreUncleanShutdownDNSFunc func(*netip.Addr) error
 }
 func (m *mockHostConfigurator) applyDNSConfig(config HostDNSConfig) error {
@@ -56,19 +53,11 @@ func (m *mockHostConfigurator) supportCustomPort() bool {
 	return false
 }
 func (m *mockHostConfigurator) restoreUncleanShutdownDNS(storedDNSAddress *netip.Addr) error {
 	if m.restoreUncleanShutdownDNSFunc != nil {
 		return m.restoreUncleanShutdownDNSFunc(storedDNSAddress)
 	}
 	return fmt.Errorf("method restoreUncleanShutdownDNS is not implemented")
 }
 func newNoopHostMocker() hostManager {
 	return &mockHostConfigurator{
-		applyDNSConfigFunc:            func(config HostDNSConfig) error { return nil },
+		applyDNSConfigFunc:    func(config HostDNSConfig) error { return nil },
-		restoreHostDNSFunc:            func() error { return nil },
+		restoreHostDNSFunc:    func() error { return nil },
-		supportCustomPortFunc:         func() bool { return true },
+		supportCustomPortFunc: func() bool { return true },
 		restoreUncleanShutdownDNSFunc: func(*netip.Addr) error { return nil },
 	}
 }
--- a/client/internal/dns/host_android.go
+++ b/client/internal/dns/host_android.go
@@ -1,11 +1,9 @@
 package dns
 import "net/netip"
 type androidHostManager struct {
 }
-func newHostManager() (hostManager, error) {
+func newHostManager(wgInterface WGIface) (hostManager, error) {
 	return &androidHostManager{}, nil
 }
@@ -20,7 +18,3 @@ func (a androidHostManager) restoreHostDNS() error {
 func (a androidHostManager) supportCustomPort() bool {
 	return false
 }
 func (a androidHostManager) restoreUncleanShutdownDNS(*netip.Addr) error {
 	return nil
 }
--- a/client/internal/dns/host_darwin.go
+++ b/client/internal/dns/host_darwin.go
@@ -6,8 +6,6 @@ import (
 	"bufio"
 	"bytes"
 	"fmt"
 	"io"
 	"net/netip"
 	"os/exec"
 	"strconv"
 	"strings"
@@ -36,7 +34,7 @@ type systemConfigurator struct {
 	createdKeys      map[string]struct{}
 }
-func newHostManager() (hostManager, error) {
+func newHostManager(_ WGIface) (hostManager, error) {
 	return &systemConfigurator{
 		createdKeys: make(map[string]struct{}),
 	}, nil
@@ -52,22 +50,17 @@ func (s *systemConfigurator) applyDNSConfig(config HostDNSConfig) error {
 	if config.RouteAll {
 		err = s.addDNSSetupForAll(config.ServerIP, config.ServerPort)
 		if err != nil {
-			return fmt.Errorf("add dns setup for all: %w", err)
+			return err
 		}
 	} else if s.primaryServiceID != "" {
 		err = s.removeKeyFromSystemConfig(getKeyWithInput(primaryServiceSetupKeyFormat, s.primaryServiceID))
 		if err != nil {
-			return fmt.Errorf("remote key from system config: %w", err)
+			return err
 		}
 		s.primaryServiceID = ""
 		log.Infof("removed %s:%d as main DNS resolver for this peer", config.ServerIP, config.ServerPort)
 	}
 	// create a file for unclean shutdown detection
 	if err := createUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to create unclean shutdown file: %s", err)
 	}
 	var (
 		searchDomains []string
 		matchDomains  []string
@@ -92,7 +85,7 @@ func (s *systemConfigurator) applyDNSConfig(config HostDNSConfig) error {
 		err = s.removeKeyFromSystemConfig(matchKey)
 	}
 	if err != nil {
-		return fmt.Errorf("add match domains: %w", err)
+		return err
 	}
 	searchKey := getKeyWithInput(netbirdDNSStateKeyFormat, searchSuffix)
@@ -103,7 +96,7 @@ func (s *systemConfigurator) applyDNSConfig(config HostDNSConfig) error {
 		err = s.removeKeyFromSystemConfig(searchKey)
 	}
 	if err != nil {
-		return fmt.Errorf("add search domains: %w", err)
+		return err
 	}
 	return nil
@@ -126,11 +119,7 @@ func (s *systemConfigurator) restoreHostDNS() error {
 	_, err := runSystemConfigCommand(wrapCommand(lines))
 	if err != nil {
 		log.Errorf("got an error while cleaning the system configuration: %s", err)
-		return fmt.Errorf("clean system: %w", err)
+		return err
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown file: %s", err)
 	}
 	return nil
@@ -140,7 +129,7 @@ func (s *systemConfigurator) removeKeyFromSystemConfig(key string) error {
 	line := buildRemoveKeyOperation(key)
 	_, err := runSystemConfigCommand(wrapCommand(line))
 	if err != nil {
-		return fmt.Errorf("remove key: %w", err)
+		return err
 	}
 	delete(s.createdKeys, key)
@@ -151,7 +140,7 @@ func (s *systemConfigurator) removeKeyFromSystemConfig(key string) error {
 func (s *systemConfigurator) addSearchDomains(key, domains string, ip string, port int) error {
 	err := s.addDNSState(key, domains, ip, port, true)
 	if err != nil {
-		return fmt.Errorf("add dns state: %w", err)
+		return err
 	}
 	log.Infof("added %d search domains to the state. Domain list: %s", len(strings.Split(domains, " ")), domains)
@@ -164,7 +153,7 @@ func (s *systemConfigurator) addSearchDomains(key, domains string, ip string, po
 func (s *systemConfigurator) addMatchDomains(key, domains, dnsServer string, port int) error {
 	err := s.addDNSState(key, domains, dnsServer, port, false)
 	if err != nil {
-		return fmt.Errorf("add dns state: %w", err)
+		return err
 	}
 	log.Infof("added %d match domains to the state. Domain list: %s", len(strings.Split(domains, " ")), domains)
@@ -189,37 +178,33 @@ func (s *systemConfigurator) addDNSState(state, domains, dnsServer string, port
 	_, err := runSystemConfigCommand(stdinCommands)
 	if err != nil {
-		return fmt.Errorf("applying state for domains %s, error: %w", domains, err)
+		return fmt.Errorf("got error while applying state for domains %s, error: %s", domains, err)
 	}
 	return nil
 }
 func (s *systemConfigurator) addDNSSetupForAll(dnsServer string, port int) error {
-	primaryServiceKey, existingNameserver, err := s.getPrimaryService()
+	primaryServiceKey, existingNameserver := s.getPrimaryService()
-	if err != nil || primaryServiceKey == "" {
+	if primaryServiceKey == "" {
-		return fmt.Errorf("couldn't find the primary service key: %w", err)
+		return fmt.Errorf("couldn't find the primary service key")
 	}
-
+	err := s.addDNSSetup(getKeyWithInput(primaryServiceSetupKeyFormat, primaryServiceKey), dnsServer, port, existingNameserver)
 	err = s.addDNSSetup(getKeyWithInput(primaryServiceSetupKeyFormat, primaryServiceKey), dnsServer, port, existingNameserver)
 	if err != nil {
-		return fmt.Errorf("add dns setup: %w", err)
+		return err
 	}
 	log.Infof("configured %s:%d as main DNS resolver for this peer", dnsServer, port)
 	s.primaryServiceID = primaryServiceKey
 	return nil
 }
-func (s *systemConfigurator) getPrimaryService() (string, string, error) {
+func (s *systemConfigurator) getPrimaryService() (string, string) {
 	line := buildCommandLine("show", globalIPv4State, "")
 	stdinCommands := wrapCommand(line)
 	b, err := runSystemConfigCommand(stdinCommands)
 	if err != nil {
-		return "", "", fmt.Errorf("sending the command: %w", err)
+		log.Error("got error while sending the command: ", err)
 		return "", ""
 	}
 	scanner := bufio.NewScanner(bytes.NewReader(b))
 	primaryService := ""
 	router := ""
@@ -232,11 +217,7 @@ func (s *systemConfigurator) getPrimaryService() (string, string, error) {
 			router = strings.TrimSpace(strings.Split(text, ":")[1])
 		}
 	}
-	if err := scanner.Err(); err != nil && err != io.EOF {
+	return primaryService, router
 		return primaryService, router, fmt.Errorf("scan: %w", err)
 	}
 	return primaryService, router, nil
 }
 func (s *systemConfigurator) addDNSSetup(setupKey, dnsServer string, port int, existingDNSServer string) error {
@@ -247,14 +228,7 @@ func (s *systemConfigurator) addDNSSetup(setupKey, dnsServer string, port int, e
 	stdinCommands := wrapCommand(addDomainCommand)
 	_, err := runSystemConfigCommand(stdinCommands)
 	if err != nil {
-		return fmt.Errorf("applying dns setup, error: %w", err)
+		return fmt.Errorf("got error while applying dns setup, error: %s", err)
 	}
 	return nil
 }
 func (s *systemConfigurator) restoreUncleanShutdownDNS(*netip.Addr) error {
 	if err := s.restoreHostDNS(); err != nil {
 		return fmt.Errorf("restoring dns via scutil: %w", err)
 	}
 	return nil
 }
@@ -292,7 +266,7 @@ func runSystemConfigCommand(command string) ([]byte, error) {
 	cmd.Stdin = strings.NewReader(command)
 	out, err := cmd.Output()
 	if err != nil {
-		return nil, fmt.Errorf("running system configuration command: \"%s\", error: %w", command, err)
+		return nil, fmt.Errorf("got error while running system configuration command: \"%s\", error: %s", command, err)
 	}
 	return out, nil
 }
--- a/client/internal/dns/host_ios.go
+++ b/client/internal/dns/host_ios.go
@@ -2,8 +2,6 @@ package dns
 import (
 	"encoding/json"
 	"fmt"
 	"net/netip"
 	log "github.com/sirupsen/logrus"
 )
@@ -22,7 +20,7 @@ func newHostManager(dnsManager IosDnsManager) (hostManager, error) {
 func (a iosHostManager) applyDNSConfig(config HostDNSConfig) error {
 	jsonData, err := json.Marshal(config)
 	if err != nil {
-		return fmt.Errorf("marshal: %w", err)
+		return err
 	}
 	jsonString := string(jsonData)
 	log.Debugf("Applying DNS settings: %s", jsonString)
@@ -37,7 +35,3 @@ func (a iosHostManager) restoreHostDNS() error {
 func (a iosHostManager) supportCustomPort() bool {
 	return false
 }
 func (a iosHostManager) restoreUncleanShutdownDNS(*netip.Addr) error {
 	return nil
 }
--- a/client/internal/dns/host_linux.go
+++ b/client/internal/dns/host_linux.go
@@ -4,15 +4,17 @@ package dns
 import (
 	"bufio"
 	"errors"
 	"fmt"
 	"io"
 	"os"
 	"strings"
 	log "github.com/sirupsen/logrus"
 )
 const (
 	defaultResolvConfPath = "/etc/resolv.conf"
 )
 const (
 	netbirdManager osManagerType = iota
 	fileManager
@@ -21,27 +23,8 @@ const (
 	resolvConfManager
 )
 var ErrUnknownOsManagerType = errors.New("unknown os manager type")
 type osManagerType int
 func newOsManagerType(osManager string) (osManagerType, error) {
 	switch osManager {
 	case "netbird":
 		return fileManager, nil
 	case "file":
 		return netbirdManager, nil
 	case "networkManager":
 		return networkManager, nil
 	case "systemd":
 		return systemdManager, nil
 	case "resolvconf":
 		return resolvConfManager, nil
 	default:
 		return 0, ErrUnknownOsManagerType
 	}
 }
 func (t osManagerType) String() string {
 	switch t {
 	case netbirdManager:
@@ -59,17 +42,13 @@ func (t osManagerType) String() string {
 	}
 }
-func newHostManager(wgInterface string) (hostManager, error) {
+func newHostManager(wgInterface WGIface) (hostManager, error) {
 	osManager, err := getOSDNSManagerType()
 	if err != nil {
 		return nil, err
 	}
-	log.Infof("System DNS manager discovered: %s", osManager)
+	log.Debugf("discovered mode is: %s", osManager)
 	return newHostManagerFromType(wgInterface, osManager)
 }
 func newHostManagerFromType(wgInterface string, osManager osManagerType) (hostManager, error) {
 	switch osManager {
 	case networkManager:
 		return newNetworkManagerDbusConfigurator(wgInterface)
@@ -83,15 +62,12 @@ func newHostManagerFromType(wgInterface string, osManager osManagerType) (hostMa
 }
 func getOSDNSManagerType() (osManagerType, error) {
 	file, err := os.Open(defaultResolvConfPath)
 	if err != nil {
-		return 0, fmt.Errorf("unable to open %s for checking owner, got error: %w", defaultResolvConfPath, err)
+		return 0, fmt.Errorf("unable to open %s for checking owner, got error: %s", defaultResolvConfPath, err)
 	}
-	defer func() {
+	defer file.Close()
 		if err := file.Close(); err != nil {
 			log.Errorf("close file %s: %s", defaultResolvConfPath, err)
 		}
 	}()
 	scanner := bufio.NewScanner(file)
 	for scanner.Scan() {
@@ -109,11 +85,7 @@ func getOSDNSManagerType() (osManagerType, error) {
 			return networkManager, nil
 		}
 		if strings.Contains(text, "systemd-resolved") && isDbusListenerRunning(systemdResolvedDest, systemdDbusObjectNode) {
-			if checkStub() {
+			return systemdManager, nil
 				return systemdManager, nil
 			} else {
 				return fileManager, nil
 			}
 		}
 		if strings.Contains(text, "resolvconf") {
 			if isDbusListenerRunning(systemdResolvedDest, systemdDbusObjectNode) {
@@ -129,26 +101,5 @@ func getOSDNSManagerType() (osManagerType, error) {
 			return resolvConfManager, nil
 		}
 	}
 	if err := scanner.Err(); err != nil && err != io.EOF {
 		return 0, fmt.Errorf("scan: %w", err)
 	}
 	return fileManager, nil
 }
 // checkStub checks if the stub resolver is disabled in systemd-resolved. If it is disabled, we fall back to file manager.
 func checkStub() bool {
 	rConf, err := parseDefaultResolvConf()
 	if err != nil {
 		log.Warnf("failed to parse resolv conf: %s", err)
 		return true
 	}
 	for _, ns := range rConf.nameServers {
 		if ns == "127.0.0.53" {
 			return true
 		}
 	}
 	return false
 }
--- a/client/internal/dns/host_windows.go
+++ b/client/internal/dns/host_windows.go
@@ -2,8 +2,6 @@ package dns
 import (
 	"fmt"
 	"io"
 	"net/netip"
 	"strings"
 	log "github.com/sirupsen/logrus"
@@ -11,7 +9,7 @@ import (
 )
 const (
-	dnsPolicyConfigMatchPath            = `SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\DnsPolicyConfig\NetBird-Match`
+	dnsPolicyConfigMatchPath            = "SYSTEM\\CurrentControlSet\\Services\\Dnscache\\Parameters\\DnsPolicyConfig\\NetBird-Match"
 	dnsPolicyConfigVersionKey           = "Version"
 	dnsPolicyConfigVersionValue         = 2
 	dnsPolicyConfigNameKey              = "Name"
@@ -21,7 +19,7 @@ const (
 )
 const (
-	interfaceConfigPath          = `SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces`
+	interfaceConfigPath          = "SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters\\Interfaces"
 	interfaceConfigNameServerKey = "NameServer"
 	interfaceConfigSearchListKey = "SearchList"
 )
@@ -36,16 +34,12 @@ func newHostManager(wgInterface WGIface) (hostManager, error) {
 	if err != nil {
 		return nil, err
 	}
 	return newHostManagerWithGuid(guid)
 }
 func newHostManagerWithGuid(guid string) (hostManager, error) {
 	return &registryConfigurator{
 		guid: guid,
 	}, nil
 }
-func (r *registryConfigurator) supportCustomPort() bool {
+func (s *registryConfigurator) supportCustomPort() bool {
 	return false
 }
@@ -54,22 +48,17 @@ func (r *registryConfigurator) applyDNSConfig(config HostDNSConfig) error {
 	if config.RouteAll {
 		err = r.addDNSSetupForAll(config.ServerIP)
 		if err != nil {
-			return fmt.Errorf("add dns setup: %w", err)
+			return err
 		}
 	} else if r.routingAll {
 		err = r.deleteInterfaceRegistryKeyProperty(interfaceConfigNameServerKey)
 		if err != nil {
-			return fmt.Errorf("delete interface registry key property: %w", err)
+			return err
 		}
 		r.routingAll = false
 		log.Infof("removed %s as main DNS forwarder for this peer", config.ServerIP)
 	}
 	// create a file for unclean shutdown detection
 	if err := createUncleanShutdownIndicator(r.guid); err != nil {
 		log.Errorf("failed to create unclean shutdown file: %s", err)
 	}
 	var (
 		searchDomains []string
 		matchDomains  []string
@@ -91,12 +80,12 @@ func (r *registryConfigurator) applyDNSConfig(config HostDNSConfig) error {
 		err = removeRegistryKeyFromDNSPolicyConfig(dnsPolicyConfigMatchPath)
 	}
 	if err != nil {
-		return fmt.Errorf("add dns match policy: %w", err)
+		return err
 	}
 	err = r.updateSearchDomains(searchDomains)
 	if err != nil {
-		return fmt.Errorf("update search domains: %w", err)
+		return err
 	}
 	return nil
@@ -105,7 +94,7 @@ func (r *registryConfigurator) applyDNSConfig(config HostDNSConfig) error {
 func (r *registryConfigurator) addDNSSetupForAll(ip string) error {
 	err := r.setInterfaceRegistryKeyStringValue(interfaceConfigNameServerKey, ip)
 	if err != nil {
-		return fmt.Errorf("adding dns setup for all failed with error: %w", err)
+		return fmt.Errorf("adding dns setup for all failed with error: %s", err)
 	}
 	r.routingAll = true
 	log.Infof("configured %s:53 as main DNS forwarder for this peer", ip)
@@ -117,33 +106,33 @@ func (r *registryConfigurator) addDNSMatchPolicy(domains []string, ip string) er
 	if err == nil {
 		err = registry.DeleteKey(registry.LOCAL_MACHINE, dnsPolicyConfigMatchPath)
 		if err != nil {
-			return fmt.Errorf("unable to remove existing key from registry, key: HKEY_LOCAL_MACHINE\\%s, error: %w", dnsPolicyConfigMatchPath, err)
+			return fmt.Errorf("unable to remove existing key from registry, key: HKEY_LOCAL_MACHINE\\%s, error: %s", dnsPolicyConfigMatchPath, err)
 		}
 	}
 	regKey, _, err := registry.CreateKey(registry.LOCAL_MACHINE, dnsPolicyConfigMatchPath, registry.SET_VALUE)
 	if err != nil {
-		return fmt.Errorf("unable to create registry key, key: HKEY_LOCAL_MACHINE\\%s, error: %w", dnsPolicyConfigMatchPath, err)
+		return fmt.Errorf("unable to create registry key, key: HKEY_LOCAL_MACHINE\\%s, error: %s", dnsPolicyConfigMatchPath, err)
 	}
 	err = regKey.SetDWordValue(dnsPolicyConfigVersionKey, dnsPolicyConfigVersionValue)
 	if err != nil {
-		return fmt.Errorf("unable to set registry value for %s, error: %w", dnsPolicyConfigVersionKey, err)
+		return fmt.Errorf("unable to set registry value for %s, error: %s", dnsPolicyConfigVersionKey, err)
 	}
 	err = regKey.SetStringsValue(dnsPolicyConfigNameKey, domains)
 	if err != nil {
-		return fmt.Errorf("unable to set registry value for %s, error: %w", dnsPolicyConfigNameKey, err)
+		return fmt.Errorf("unable to set registry value for %s, error: %s", dnsPolicyConfigNameKey, err)
 	}
 	err = regKey.SetStringValue(dnsPolicyConfigGenericDNSServersKey, ip)
 	if err != nil {
-		return fmt.Errorf("unable to set registry value for %s, error: %w", dnsPolicyConfigGenericDNSServersKey, err)
+		return fmt.Errorf("unable to set registry value for %s, error: %s", dnsPolicyConfigGenericDNSServersKey, err)
 	}
 	err = regKey.SetDWordValue(dnsPolicyConfigConfigOptionsKey, dnsPolicyConfigConfigOptionsValue)
 	if err != nil {
-		return fmt.Errorf("unable to set registry value for %s, error: %w", dnsPolicyConfigConfigOptionsKey, err)
+		return fmt.Errorf("unable to set registry value for %s, error: %s", dnsPolicyConfigConfigOptionsKey, err)
 	}
 	log.Infof("added %d match domains to the state. Domain list: %s", len(domains), domains)
@@ -152,25 +141,18 @@ func (r *registryConfigurator) addDNSMatchPolicy(domains []string, ip string) er
 }
 func (r *registryConfigurator) restoreHostDNS() error {
-	if err := removeRegistryKeyFromDNSPolicyConfig(dnsPolicyConfigMatchPath); err != nil {
+	err := removeRegistryKeyFromDNSPolicyConfig(dnsPolicyConfigMatchPath)
-		log.Errorf("remove registry key from dns policy config: %s", err)
+	if err != nil {
 		log.Error(err)
 	}
-	if err := r.deleteInterfaceRegistryKeyProperty(interfaceConfigSearchListKey); err != nil {
+	return r.deleteInterfaceRegistryKeyProperty(interfaceConfigSearchListKey)
 		return fmt.Errorf("remove interface registry key: %w", err)
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown file: %s", err)
 	}
 	return nil
 }
 func (r *registryConfigurator) updateSearchDomains(domains []string) error {
 	err := r.setInterfaceRegistryKeyStringValue(interfaceConfigSearchListKey, strings.Join(domains, ","))
 	if err != nil {
-		return fmt.Errorf("adding search domain failed with error: %w", err)
+		return fmt.Errorf("adding search domain failed with error: %s", err)
 	}
 	log.Infof("updated the search domains in the registry with %d domains. Domain list: %s", len(domains), domains)
@@ -181,13 +163,13 @@ func (r *registryConfigurator) updateSearchDomains(domains []string) error {
 func (r *registryConfigurator) setInterfaceRegistryKeyStringValue(key, value string) error {
 	regKey, err := r.getInterfaceRegistryKey()
 	if err != nil {
-		return fmt.Errorf("get interface registry key: %w", err)
+		return err
 	}
-	defer closer(regKey)
+	defer regKey.Close()
 	err = regKey.SetStringValue(key, value)
 	if err != nil {
-		return fmt.Errorf("applying key %s with value \"%s\" for interface failed with error: %w", key, value, err)
+		return fmt.Errorf("applying key %s with value \"%s\" for interface failed with error: %s", key, value, err)
 	}
 	return nil
@@ -196,13 +178,13 @@ func (r *registryConfigurator) setInterfaceRegistryKeyStringValue(key, value str
 func (r *registryConfigurator) deleteInterfaceRegistryKeyProperty(propertyKey string) error {
 	regKey, err := r.getInterfaceRegistryKey()
 	if err != nil {
-		return fmt.Errorf("get interface registry key: %w", err)
+		return err
 	}
-	defer closer(regKey)
+	defer regKey.Close()
 	err = regKey.DeleteValue(propertyKey)
 	if err != nil {
-		return fmt.Errorf("deleting registry key %s for interface failed with error: %w", propertyKey, err)
+		return fmt.Errorf("deleting registry key %s for interface failed with error: %s", propertyKey, err)
 	}
 	return nil
@@ -215,33 +197,20 @@ func (r *registryConfigurator) getInterfaceRegistryKey() (registry.Key, error) {
 	regKey, err := registry.OpenKey(registry.LOCAL_MACHINE, regKeyPath, registry.SET_VALUE)
 	if err != nil {
-		return regKey, fmt.Errorf("unable to open the interface registry key, key: HKEY_LOCAL_MACHINE\\%s, error: %w", regKeyPath, err)
+		return regKey, fmt.Errorf("unable to open the interface registry key, key: HKEY_LOCAL_MACHINE\\%s, error: %s", regKeyPath, err)
 	}
 	return regKey, nil
 }
 func (r *registryConfigurator) restoreUncleanShutdownDNS(*netip.Addr) error {
 	if err := r.restoreHostDNS(); err != nil {
 		return fmt.Errorf("restoring dns via registry: %w", err)
 	}
 	return nil
 }
 func removeRegistryKeyFromDNSPolicyConfig(regKeyPath string) error {
 	k, err := registry.OpenKey(registry.LOCAL_MACHINE, regKeyPath, registry.QUERY_VALUE)
 	if err == nil {
-		defer closer(k)
+		k.Close()
 		err = registry.DeleteKey(registry.LOCAL_MACHINE, regKeyPath)
 		if err != nil {
-			return fmt.Errorf("unable to remove existing key from registry, key: HKEY_LOCAL_MACHINE\\%s, error: %w", regKeyPath, err)
+			return fmt.Errorf("unable to remove existing key from registry, key: HKEY_LOCAL_MACHINE\\%s, error: %s", regKeyPath, err)
 		}
 	}
 	return nil
 }
 func closer(closer io.Closer) {
 	if err := closer.Close(); err != nil {
 		log.Errorf("failed to close: %s", err)
 	}
 }
--- a/client/internal/dns/local.go
+++ b/client/internal/dns/local.go
@@ -52,7 +52,7 @@ func (d *localResolver) lookupRecord(r *dns.Msg) dns.RR {
 func (d *localResolver) registerRecord(record nbdns.SimpleRecord) error {
 	fullRecord, err := dns.NewRR(record.String())
 	if err != nil {
-		return fmt.Errorf("register record: %w", err)
+		return err
 	}
 	fullRecord.Header().Rdlength = record.Len()
@@ -71,5 +71,3 @@ func buildRecordKey(name string, class, qType uint16) string {
 	key := fmt.Sprintf("%s_%d_%d", name, class, qType)
 	return key
 }
 func (d *localResolver) probeAvailability() {}
--- a/client/internal/dns/mock_server.go
+++ b/client/internal/dns/mock_server.go
@@ -48,7 +48,3 @@ func (m *MockServer) UpdateDNSServer(serial uint64, update nbdns.Config) error {
 func (m *MockServer) SearchDomains() []string {
 	return make([]string, 0)
 }
 // ProbeAvailability mocks implementation of ProbeAvailability from the Server interface
 func (m *MockServer) ProbeAvailability() {
 }
--- a/client/internal/dns/network_manager_linux.go
+++ b/client/internal/dns/network_manager_linux.go
@@ -5,10 +5,8 @@ package dns
 import (
 	"context"
 	"encoding/binary"
 	"errors"
 	"fmt"
 	"net/netip"
 	"strings"
 	"time"
 	"github.com/godbus/dbus/v5"
@@ -43,13 +41,9 @@ const (
 	networkManagerDbusPrimaryDNSPriority       int32 = -500
 	networkManagerDbusWithMatchDomainPriority  int32 = 0
 	networkManagerDbusSearchDomainOnlyPriority int32 = 50
 	supportedNetworkManagerVersionConstraint         = ">= 1.16, < 1.28"
 )
 var supportedNetworkManagerVersionConstraints = []string{
 	">= 1.16, < 1.27",
 	">= 1.44, < 1.45",
 }
 type networkManagerDbusConfigurator struct {
 	dbusLinkObject dbus.ObjectPath
 	routingAll     bool
@@ -77,19 +71,19 @@ func (s networkManagerConnSettings) cleanDeprecatedSettings() {
 	}
 }
-func newNetworkManagerDbusConfigurator(wgInterface string) (hostManager, error) {
+func newNetworkManagerDbusConfigurator(wgInterface WGIface) (hostManager, error) {
 	obj, closeConn, err := getDbusObject(networkManagerDest, networkManagerDbusObjectNode)
 	if err != nil {
-		return nil, fmt.Errorf("get nm dbus: %w", err)
+		return nil, err
 	}
 	defer closeConn()
 	var s string
-	err = obj.Call(networkManagerDbusGetDeviceByIPIfaceMethod, dbusDefaultFlag, wgInterface).Store(&s)
+	err = obj.Call(networkManagerDbusGetDeviceByIPIfaceMethod, dbusDefaultFlag, wgInterface.Name()).Store(&s)
 	if err != nil {
-		return nil, fmt.Errorf("call: %w", err)
+		return nil, err
 	}
-	log.Debugf("got network manager dbus Link Object: %s from net interface %s", s, wgInterface)
+	log.Debugf("got network manager dbus Link Object: %s from net interface %s", s, wgInterface.Name())
 	return &networkManagerDbusConfigurator{
 		dbusLinkObject: dbus.ObjectPath(s),
@@ -103,14 +97,14 @@ func (n *networkManagerDbusConfigurator) supportCustomPort() bool {
 func (n *networkManagerDbusConfigurator) applyDNSConfig(config HostDNSConfig) error {
 	connSettings, configVersion, err := n.getAppliedConnectionSettings()
 	if err != nil {
-		return fmt.Errorf("retrieving the applied connection settings, error: %w", err)
+		return fmt.Errorf("got an error while retrieving the applied connection settings, error: %s", err)
 	}
 	connSettings.cleanDeprecatedSettings()
 	dnsIP, err := netip.ParseAddr(config.ServerIP)
 	if err != nil {
-		return fmt.Errorf("unable to parse ip address, error: %w", err)
+		return fmt.Errorf("unable to parse ip address, error: %s", err)
 	}
 	convDNSIP := binary.LittleEndian.Uint32(dnsIP.AsSlice())
 	connSettings[networkManagerDbusIPv4Key][networkManagerDbusDNSKey] = dbus.MakeVariant([]uint32{convDNSIP})
@@ -151,37 +145,23 @@ func (n *networkManagerDbusConfigurator) applyDNSConfig(config HostDNSConfig) er
 	connSettings[networkManagerDbusIPv4Key][networkManagerDbusDNSPriorityKey] = dbus.MakeVariant(priority)
 	connSettings[networkManagerDbusIPv4Key][networkManagerDbusDNSSearchKey] = dbus.MakeVariant(newDomainList)
 	// create a backup for unclean shutdown detection before adding domains, as these might end up in the resolv.conf file.
 	// The file content itself is not important for network-manager restoration
 	if err := createUncleanShutdownIndicator(defaultResolvConfPath, networkManager, dnsIP.String()); err != nil {
 		log.Errorf("failed to create unclean shutdown resolv.conf backup: %s", err)
 	}
 	log.Infof("adding %d search domains and %d match domains. Search list: %s , Match list: %s", len(searchDomains), len(matchDomains), searchDomains, matchDomains)
 	err = n.reApplyConnectionSettings(connSettings, configVersion)
 	if err != nil {
-		return fmt.Errorf("reapplying the connection with new settings, error: %w", err)
+		return fmt.Errorf("got an error while reapplying the connection with new settings, error: %s", err)
 	}
 	return nil
 }
 func (n *networkManagerDbusConfigurator) restoreHostDNS() error {
 	// once the interface is gone network manager cleans all config associated with it
-	if err := n.deleteConnectionSettings(); err != nil {
+	return n.deleteConnectionSettings()
 		return fmt.Errorf("delete connection settings: %w", err)
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown resolv.conf backup: %s", err)
 	}
 	return nil
 }
 func (n *networkManagerDbusConfigurator) getAppliedConnectionSettings() (networkManagerConnSettings, networkManagerConfigVersion, error) {
 	obj, closeConn, err := getDbusObject(networkManagerDest, n.dbusLinkObject)
 	if err != nil {
-		return nil, 0, fmt.Errorf("attempting to retrieve the applied connection settings, err: %w", err)
+		return nil, 0, fmt.Errorf("got error while attempting to retrieve the applied connection settings, err: %s", err)
 	}
 	defer closeConn()
@@ -196,7 +176,7 @@ func (n *networkManagerDbusConfigurator) getAppliedConnectionSettings() (network
 	err = obj.CallWithContext(ctx, networkManagerDbusDeviceGetAppliedConnectionMethod, dbusDefaultFlag,
 		networkManagerDbusDefaultBehaviorFlag).Store(&connSettings, &configVersion)
 	if err != nil {
-		return nil, 0, fmt.Errorf("calling GetAppliedConnection method with context, err: %w", err)
+		return nil, 0, fmt.Errorf("got error while calling GetAppliedConnection method with context, err: %s", err)
 	}
 	return connSettings, configVersion, nil
@@ -205,7 +185,7 @@ func (n *networkManagerDbusConfigurator) getAppliedConnectionSettings() (network
 func (n *networkManagerDbusConfigurator) reApplyConnectionSettings(connSettings networkManagerConnSettings, configVersion networkManagerConfigVersion) error {
 	obj, closeConn, err := getDbusObject(networkManagerDest, n.dbusLinkObject)
 	if err != nil {
-		return fmt.Errorf("attempting to retrieve the applied connection settings, err: %w", err)
+		return fmt.Errorf("got error while attempting to retrieve the applied connection settings, err: %s", err)
 	}
 	defer closeConn()
@@ -215,7 +195,7 @@ func (n *networkManagerDbusConfigurator) reApplyConnectionSettings(connSettings
 	err = obj.CallWithContext(ctx, networkManagerDbusDeviceReapplyMethod, dbusDefaultFlag,
 		connSettings, configVersion, networkManagerDbusDefaultBehaviorFlag).Store()
 	if err != nil {
-		return fmt.Errorf("calling ReApply method with context, err: %w", err)
+		return fmt.Errorf("got error while calling ReApply method with context, err: %s", err)
 	}
 	return nil
@@ -224,34 +204,21 @@ func (n *networkManagerDbusConfigurator) reApplyConnectionSettings(connSettings
 func (n *networkManagerDbusConfigurator) deleteConnectionSettings() error {
 	obj, closeConn, err := getDbusObject(networkManagerDest, n.dbusLinkObject)
 	if err != nil {
-		return fmt.Errorf("attempting to retrieve the applied connection settings, err: %w", err)
+		return fmt.Errorf("got error while attempting to retrieve the applied connection settings, err: %s", err)
 	}
 	defer closeConn()
 	ctx, cancel := context.WithTimeout(context.TODO(), 5*time.Second)
 	defer cancel()
 	// this call is required to remove the device for DNS cleanup, even if it fails
 	err = obj.CallWithContext(ctx, networkManagerDbusDeviceDeleteMethod, dbusDefaultFlag).Store()
 	if err != nil {
-		var dbusErr dbus.Error
+		return fmt.Errorf("got error while calling delete method with context, err: %s", err)
 		if errors.As(err, &dbusErr) && dbusErr.Name == dbus.ErrMsgUnknownMethod.Name {
 			// interface is gone already
 			return nil
 		}
 		return fmt.Errorf("calling delete method with context, err: %s", err)
 	}
 	return nil
 }
 func (n *networkManagerDbusConfigurator) restoreUncleanShutdownDNS(*netip.Addr) error {
 	if err := n.restoreHostDNS(); err != nil {
 		return fmt.Errorf("restoring dns via network-manager: %w", err)
 	}
 	return nil
 }
 func isNetworkManagerSupported() bool {
 	return isNetworkManagerSupportedVersion() && isNetworkManagerSupportedMode()
 }
@@ -283,13 +250,13 @@ func isNetworkManagerSupportedMode() bool {
 func getNetworkManagerDNSProperty(property string, store any) error {
 	obj, closeConn, err := getDbusObject(networkManagerDest, networkManagerDbusDNSManagerObjectNode)
 	if err != nil {
-		return fmt.Errorf("attempting to retrieve the network manager dns manager object, error: %w", err)
+		return fmt.Errorf("got error while attempting to retrieve the network manager dns manager object, error: %s", err)
 	}
 	defer closeConn()
 	v, e := obj.GetProperty(property)
 	if e != nil {
-		return fmt.Errorf("getting property %s: %w", property, e)
+		return fmt.Errorf("got an error getting property %s: %v", property, e)
 	}
 	return v.Store(store)
@@ -311,26 +278,15 @@ func isNetworkManagerSupportedVersion() bool {
 	}
 	versionValue, err := parseVersion(value.Value().(string))
 	if err != nil {
 		log.Errorf("nm: parse version: %s", err)
 		return false
 	}
-	var supported bool
+	constraints, err := version.NewConstraint(supportedNetworkManagerVersionConstraint)
-	for _, constraint := range supportedNetworkManagerVersionConstraints {
+	if err != nil {
-		constr, err := version.NewConstraint(constraint)
+		return false
 		if err != nil {
 			log.Errorf("nm: create constraint: %s", err)
 			return false
 		}
 		if met := constr.Check(versionValue); met {
 			supported = true
 			break
 		}
 	}
-	log.Debugf("network manager constraints [%s] met: %t", strings.Join(supportedNetworkManagerVersionConstraints, " | "), supported)
+	return constraints.Check(versionValue)
 	return supported
 }
 func parseVersion(inputVersion string) (*version.Version, error) {
--- a/client/internal/dns/resolvconf_linux.go
+++ b/client/internal/dns/resolvconf_linux.go
@@ -5,7 +5,6 @@ package dns
 import (
 	"bytes"
 	"fmt"
 	"net/netip"
 	"os/exec"
 	log "github.com/sirupsen/logrus"
@@ -22,17 +21,17 @@ type resolvconf struct {
 }
 // supported "openresolv" only
-func newResolvConfConfigurator(wgInterface string) (hostManager, error) {
+func newResolvConfConfigurator(wgInterface WGIface) (hostManager, error) {
-	resolvConfEntries, err := parseDefaultResolvConf()
+	originalSearchDomains, nameServers, others, err := originalDNSConfigs("/etc/resolv.conf")
 	if err != nil {
-		log.Errorf("could not read original search domains from %s: %s", defaultResolvConfPath, err)
+		log.Error(err)
 	}
 	return &resolvconf{
-		ifaceName:             wgInterface,
+		ifaceName:             wgInterface.Name(),
-		originalSearchDomains: resolvConfEntries.searchDomains,
+		originalSearchDomains: originalSearchDomains,
-		originalNameServers:   resolvConfEntries.nameServers,
+		originalNameServers:   nameServers,
-		othersConfigs:         resolvConfEntries.others,
+		othersConfigs:         others,
 	}, nil
 }
@@ -45,7 +44,7 @@ func (r *resolvconf) applyDNSConfig(config HostDNSConfig) error {
 	if !config.RouteAll {
 		err = r.restoreHostDNS()
 		if err != nil {
-			log.Errorf("restore host dns: %s", err)
+			log.Error(err)
 		}
 		return fmt.Errorf("unable to configure DNS for this peer using resolvconf manager without a nameserver group with all domains configured")
 	}
@@ -53,21 +52,14 @@ func (r *resolvconf) applyDNSConfig(config HostDNSConfig) error {
 	searchDomainList := searchDomains(config)
 	searchDomainList = mergeSearchDomains(searchDomainList, r.originalSearchDomains)
 	options := prepareOptionsWithTimeout(r.othersConfigs, int(dnsFailoverTimeout.Seconds()), dnsFailoverAttempts)
 	buf := prepareResolvConfContent(
 		searchDomainList,
 		append([]string{config.ServerIP}, r.originalNameServers...),
-		options)
+		r.othersConfigs)
 	// create a backup for unclean shutdown detection before the resolv.conf is changed
 	if err := createUncleanShutdownIndicator(defaultResolvConfPath, resolvConfManager, config.ServerIP); err != nil {
 		log.Errorf("failed to create unclean shutdown resolv.conf backup: %s", err)
 	}
 	err = r.applyConfig(buf)
 	if err != nil {
-		return fmt.Errorf("apply config: %w", err)
+		return err
 	}
 	log.Infof("added %d search domains. Search list: %s", len(searchDomainList), searchDomainList)
@@ -75,34 +67,20 @@ func (r *resolvconf) applyDNSConfig(config HostDNSConfig) error {
 }
 func (r *resolvconf) restoreHostDNS() error {
 	// openresolv only, debian resolvconf doesn't support "-f"
 	cmd := exec.Command(resolvconfCommand, "-f", "-d", r.ifaceName)
 	_, err := cmd.Output()
 	if err != nil {
-		return fmt.Errorf("removing resolvconf configuration for %s interface, error: %w", r.ifaceName, err)
+		return fmt.Errorf("got an error while removing resolvconf configuration for %s interface, error: %s", r.ifaceName, err)
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown resolv.conf backup: %s", err)
 	}
 	return nil
 }
 func (r *resolvconf) applyConfig(content bytes.Buffer) error {
 	// openresolv only, debian resolvconf doesn't support "-x"
 	cmd := exec.Command(resolvconfCommand, "-x", "-a", r.ifaceName)
 	cmd.Stdin = &content
 	_, err := cmd.Output()
 	if err != nil {
-		return fmt.Errorf("applying resolvconf configuration for %s interface, error: %w", r.ifaceName, err)
+		return fmt.Errorf("got an error while applying resolvconf configuration for %s interface, error: %s", r.ifaceName, err)
 	}
 	return nil
 }
 func (r *resolvconf) restoreUncleanShutdownDNS(*netip.Addr) error {
 	if err := r.restoreHostDNS(); err != nil {
 		return fmt.Errorf("restoring dns for interface %s: %w", r.ifaceName, err)
 	}
 	return nil
 }
--- a/client/internal/dns/response_writer.go
+++ b/client/internal/dns/response_writer.go
@@ -31,13 +31,10 @@ func (r *responseWriter) RemoteAddr() net.Addr {
 func (r *responseWriter) WriteMsg(msg *dns.Msg) error {
 	buff, err := msg.Pack()
 	if err != nil {
-		return fmt.Errorf("pack: %w", err)
+		return err
 	}
-
+	_, err = r.Write(buff)
-	if _, err := r.Write(buff); err != nil {
+	return err
 		return fmt.Errorf("write: %w", err)
 	}
 	return nil
 }
 // Write writes a raw buffer back to the client.
--- a/client/internal/dns/server.go
+++ b/client/internal/dns/server.go
@@ -4,7 +4,6 @@ import (
 	"context"
 	"fmt"
 	"net/netip"
 	"strings"
 	"sync"
 	"github.com/miekg/dns"
@@ -12,7 +11,6 @@ import (
 	log "github.com/sirupsen/logrus"
 	"github.com/netbirdio/netbird/client/internal/listener"
 	"github.com/netbirdio/netbird/client/internal/peer"
 	nbdns "github.com/netbirdio/netbird/dns"
 )
@@ -34,7 +32,6 @@ type Server interface {
 	UpdateDNSServer(serial uint64, update nbdns.Config) error
 	OnUpdatedHostDNSServer(strings []string)
 	SearchDomains() []string
 	ProbeAvailability()
 }
 type registeredHandlerMap map[string]handlerWithStop
@@ -61,14 +58,11 @@ type DefaultServer struct {
 	// make sense on mobile only
 	searchDomainNotifier *notifier
 	iosDnsManager        IosDnsManager
 	statusRecorder *peer.Status
 }
 type handlerWithStop interface {
 	dns.Handler
 	stop()
 	probeAvailability()
 }
 type muxUpdate struct {
@@ -77,12 +71,7 @@ type muxUpdate struct {
 }
 // NewDefaultServer returns a new dns server
-func NewDefaultServer(
+func NewDefaultServer(ctx context.Context, wgInterface WGIface, customAddress string) (*DefaultServer, error) {
 	ctx context.Context,
 	wgInterface WGIface,
 	customAddress string,
 	statusRecorder *peer.Status,
 ) (*DefaultServer, error) {
 	var addrPort *netip.AddrPort
 	if customAddress != "" {
 		parsedAddrPort, err := netip.ParseAddrPort(customAddress)
@@ -99,20 +88,13 @@ func NewDefaultServer(
 		dnsService = newServiceViaListener(wgInterface, addrPort)
 	}
-	return newDefaultServer(ctx, wgInterface, dnsService, statusRecorder), nil
+	return newDefaultServer(ctx, wgInterface, dnsService), nil
 }
 // NewDefaultServerPermanentUpstream returns a new dns server. It optimized for mobile systems
-func NewDefaultServerPermanentUpstream(
+func NewDefaultServerPermanentUpstream(ctx context.Context, wgInterface WGIface, hostsDnsList []string, config nbdns.Config, listener listener.NetworkChangeListener) *DefaultServer {
 	ctx context.Context,
 	wgInterface WGIface,
 	hostsDnsList []string,
 	config nbdns.Config,
 	listener listener.NetworkChangeListener,
 	statusRecorder *peer.Status,
 ) *DefaultServer {
 	log.Debugf("host dns address list is: %v", hostsDnsList)
-	ds := newDefaultServer(ctx, wgInterface, newServiceViaMemory(wgInterface), statusRecorder)
+	ds := newDefaultServer(ctx, wgInterface, newServiceViaMemory(wgInterface))
 	ds.permanent = true
 	ds.hostsDnsList = hostsDnsList
 	ds.addHostRootZone()
@@ -124,18 +106,13 @@ func NewDefaultServerPermanentUpstream(
 }
 // NewDefaultServerIos returns a new dns server. It optimized for ios
-func NewDefaultServerIos(
+func NewDefaultServerIos(ctx context.Context, wgInterface WGIface, iosDnsManager IosDnsManager) *DefaultServer {
-	ctx context.Context,
+	ds := newDefaultServer(ctx, wgInterface, newServiceViaMemory(wgInterface))
 	wgInterface WGIface,
 	iosDnsManager IosDnsManager,
 	statusRecorder *peer.Status,
 ) *DefaultServer {
 	ds := newDefaultServer(ctx, wgInterface, newServiceViaMemory(wgInterface), statusRecorder)
 	ds.iosDnsManager = iosDnsManager
 	return ds
 }
-func newDefaultServer(ctx context.Context, wgInterface WGIface, dnsService service, statusRecorder *peer.Status) *DefaultServer {
+func newDefaultServer(ctx context.Context, wgInterface WGIface, dnsService service) *DefaultServer {
 	ctx, stop := context.WithCancel(ctx)
 	defaultServer := &DefaultServer{
 		ctx:       ctx,
@@ -145,8 +122,7 @@ func newDefaultServer(ctx context.Context, wgInterface WGIface, dnsService servi
 		localResolver: &localResolver{
 			registeredMap: make(registrationMap),
 		},
-		wgInterface:    wgInterface,
+		wgInterface: wgInterface,
 		statusRecorder: statusRecorder,
 	}
 	return defaultServer
@@ -164,15 +140,12 @@ func (s *DefaultServer) Initialize() (err error) {
 	if s.permanent {
 		err = s.service.Listen()
 		if err != nil {
-			return fmt.Errorf("service listen: %w", err)
+			return err
 		}
 	}
 	s.hostManager, err = s.initialize()
-	if err != nil {
+	return err
 		return fmt.Errorf("initialize: %w", err)
 	}
 	return nil
 }
 // DnsIP returns the DNS resolver server IP address
@@ -250,7 +223,7 @@ func (s *DefaultServer) UpdateDNSServer(serial uint64, update nbdns.Config) erro
 		}
 		if err := s.applyConfiguration(update); err != nil {
-			return fmt.Errorf("apply configuration: %w", err)
+			return err
 		}
 		s.updateSerial = serial
@@ -275,14 +248,6 @@ func (s *DefaultServer) SearchDomains() []string {
 	return searchDomains
 }
 // ProbeAvailability tests each upstream group's servers for availability
 // and deactivates the group if no server responds
 func (s *DefaultServer) ProbeAvailability() {
 	for _, mux := range s.dnsMuxMap {
 		mux.probeAvailability()
 	}
 }
 func (s *DefaultServer) applyConfiguration(update nbdns.Config) error {
 	// is the service should be Disabled, we stop the listener or fake resolver
 	// and proceed with a regular update to clean up the handlers and records
@@ -321,8 +286,6 @@ func (s *DefaultServer) applyConfiguration(update nbdns.Config) error {
 		s.searchDomainNotifier.onNewSearchDomains(s.SearchDomains())
 	}
 	s.updateNSGroupStates(update.NameServerGroups)
 	return nil
 }
@@ -362,13 +325,7 @@ func (s *DefaultServer) buildUpstreamHandlerUpdate(nameServerGroups []*nbdns.Nam
 			continue
 		}
-		handler, err := newUpstreamResolver(
+		handler, err := newUpstreamResolver(s.ctx, s.wgInterface.Name(), s.wgInterface.Address().IP, s.wgInterface.Address().Network)
 			s.ctx,
 			s.wgInterface.Name(),
 			s.wgInterface.Address().IP,
 			s.wgInterface.Address().Network,
 			s.statusRecorder,
 		)
 		if err != nil {
 			return nil, fmt.Errorf("unable to create a new upstream resolver, error: %v", err)
 		}
@@ -421,7 +378,6 @@ func (s *DefaultServer) buildUpstreamHandlerUpdate(nameServerGroups []*nbdns.Nam
 			})
 		}
 	}
 	return muxUpdates, nil
 }
@@ -490,14 +446,14 @@ func getNSHostPort(ns nbdns.NameServer) string {
 func (s *DefaultServer) upstreamCallbacks(
 	nsGroup *nbdns.NameServerGroup,
 	handler dns.Handler,
-) (deactivate func(error), reactivate func()) {
+) (deactivate func(), reactivate func()) {
 	var removeIndex map[string]int
-	deactivate = func(err error) {
+	deactivate = func() {
 		s.mux.Lock()
 		defer s.mux.Unlock()
 		l := log.WithField("nameservers", nsGroup.NameServers)
-		l.Info("Temporarily deactivating nameservers group due to timeout")
+		l.Info("temporary deactivate nameservers group due timeout")
 		removeIndex = make(map[string]int)
 		for _, domain := range nsGroup.Domains {
@@ -516,11 +472,8 @@ func (s *DefaultServer) upstreamCallbacks(
 			}
 		}
 		if err := s.hostManager.applyDNSConfig(s.currentConfig); err != nil {
-			l.Errorf("Failed to apply nameserver deactivation on the host: %v", err)
+			l.WithError(err).Error("fail to apply nameserver deactivation on the host")
 		}
 		s.updateNSState(nsGroup, err, false)
 	}
 	reactivate = func() {
 		s.mux.Lock()
@@ -535,28 +488,20 @@ func (s *DefaultServer) upstreamCallbacks(
 		}
 		l := log.WithField("nameservers", nsGroup.NameServers)
-		l.Debug("reactivate temporary disabled nameserver group")
+		l.Debug("reactivate temporary Disabled nameserver group")
 		if nsGroup.Primary {
 			s.currentConfig.RouteAll = true
 		}
 		if err := s.hostManager.applyDNSConfig(s.currentConfig); err != nil {
-			l.WithError(err).Error("reactivate temporary disabled nameserver group, DNS update apply")
+			l.WithError(err).Error("reactivate temporary Disabled nameserver group, DNS update apply")
 		}
 		s.updateNSState(nsGroup, nil, true)
 	}
 	return
 }
 func (s *DefaultServer) addHostRootZone() {
-	handler, err := newUpstreamResolver(
+	handler, err := newUpstreamResolver(s.ctx, s.wgInterface.Name(), s.wgInterface.Address().IP, s.wgInterface.Address().Network)
 		s.ctx,
 		s.wgInterface.Name(),
 		s.wgInterface.Address().IP,
 		s.wgInterface.Address().Network,
 		s.statusRecorder,
 	)
 	if err != nil {
 		log.Errorf("unable to create a new upstream resolver, error: %v", err)
 		return
@@ -576,50 +521,7 @@ func (s *DefaultServer) addHostRootZone() {
 		handler.upstreamServers[n] = fmt.Sprintf("%s:53", ipString)
 	}
-	handler.deactivate = func(error) {}
+	handler.deactivate = func() {}
 	handler.reactivate = func() {}
 	s.service.RegisterMux(nbdns.RootZone, handler)
 }
 func (s *DefaultServer) updateNSGroupStates(groups []*nbdns.NameServerGroup) {
 	var states []peer.NSGroupState
 	for _, group := range groups {
 		var servers []string
 		for _, ns := range group.NameServers {
 			servers = append(servers, fmt.Sprintf("%s:%d", ns.IP, ns.Port))
 		}
 		state := peer.NSGroupState{
 			ID:      generateGroupKey(group),
 			Servers: servers,
 			Domains: group.Domains,
 			// The probe will determine the state, default enabled
 			Enabled: true,
 			Error:   nil,
 		}
 		states = append(states, state)
 	}
 	s.statusRecorder.UpdateDNSStates(states)
 }
 func (s *DefaultServer) updateNSState(nsGroup *nbdns.NameServerGroup, err error, enabled bool) {
 	states := s.statusRecorder.GetDNSStates()
 	id := generateGroupKey(nsGroup)
 	for i, state := range states {
 		if state.ID == id {
 			states[i].Enabled = enabled
 			states[i].Error = err
 			break
 		}
 	}
 	s.statusRecorder.UpdateDNSStates(states)
 }
 func generateGroupKey(nsGroup *nbdns.NameServerGroup) string {
 	var servers []string
 	for _, ns := range nsGroup.NameServers {
 		servers = append(servers, fmt.Sprintf("%s:%d", ns.IP, ns.Port))
 	}
 	return fmt.Sprintf("%s_%s_%s", nsGroup.ID, nsGroup.Name, strings.Join(servers, ","))
 }
--- a/client/internal/dns/server_android.go
+++ b/client/internal/dns/server_android.go
@@ -1,5 +1,5 @@
 package dns
 func (s *DefaultServer) initialize() (manager hostManager, err error) {
-	return newHostManager()
+	return newHostManager(s.wgInterface)
 }
--- a/client/internal/dns/server_darwin.go
+++ b/client/internal/dns/server_darwin.go
@@ -3,5 +3,5 @@
 package dns
 func (s *DefaultServer) initialize() (manager hostManager, err error) {
-	return newHostManager()
+	return newHostManager(s.wgInterface)
 }
--- a/client/internal/dns/server_linux.go
+++ b/client/internal/dns/server_linux.go
@@ -3,5 +3,5 @@
 package dns
 func (s *DefaultServer) initialize() (manager hostManager, err error) {
-	return newHostManager(s.wgInterface.Name())
+	return newHostManager(s.wgInterface)
 }
--- a/client/internal/dns/server_test.go
+++ b/client/internal/dns/server_test.go
@@ -15,7 +15,6 @@ import (
 	"golang.zx2c4.com/wireguard/wgctrl/wgtypes"
 	"github.com/netbirdio/netbird/client/firewall/uspfilter"
 	"github.com/netbirdio/netbird/client/internal/peer"
 	"github.com/netbirdio/netbird/client/internal/stdnet"
 	nbdns "github.com/netbirdio/netbird/dns"
 	"github.com/netbirdio/netbird/formatter"
@@ -60,10 +59,6 @@ func (w *mocWGIface) SetFilter(filter iface.PacketFilter) error {
 	return nil
 }
 func (w *mocWGIface) GetStats(_ string) (iface.WGStats, error) {
 	return iface.WGStats{}, nil
 }
 var zoneRecords = []nbdns.SimpleRecord{
 	{
 		Name:  "peera.netbird.cloud",
@@ -275,7 +270,7 @@ func TestUpdateDNSServer(t *testing.T) {
 					t.Log(err)
 				}
 			}()
-			dnsServer, err := NewDefaultServer(context.Background(), wgIface, "", &peer.Status{})
+			dnsServer, err := NewDefaultServer(context.Background(), wgIface, "")
 			if err != nil {
 				t.Fatal(err)
 			}
@@ -376,7 +371,7 @@ func TestDNSFakeResolverHandleUpdates(t *testing.T) {
 		return
 	}
-	dnsServer, err := NewDefaultServer(context.Background(), wgIface, "", &peer.Status{})
+	dnsServer, err := NewDefaultServer(context.Background(), wgIface, "")
 	if err != nil {
 		t.Errorf("create DNS server: %v", err)
 		return
@@ -471,7 +466,7 @@ func TestDNSServerStartStop(t *testing.T) {
 	for _, testCase := range testCases {
 		t.Run(testCase.name, func(t *testing.T) {
-			dnsServer, err := NewDefaultServer(context.Background(), &mocWGIface{}, testCase.addrPort, &peer.Status{})
+			dnsServer, err := NewDefaultServer(context.Background(), &mocWGIface{}, testCase.addrPort)
 			if err != nil {
 				t.Fatalf("%v", err)
 			}
@@ -542,7 +537,6 @@ func TestDNSServerUpstreamDeactivateCallback(t *testing.T) {
 				{false, "domain2", false},
 			},
 		},
 		statusRecorder: &peer.Status{},
 	}
 	var domainsUpdate string
@@ -565,7 +559,7 @@ func TestDNSServerUpstreamDeactivateCallback(t *testing.T) {
 		},
 	}, nil)
-	deactivate(nil)
+	deactivate()
 	expected := "domain0,domain2"
 	domains := []string{}
 	for _, item := range server.currentConfig.Domains {
@@ -603,7 +597,7 @@ func TestDNSPermanent_updateHostDNS_emptyUpstream(t *testing.T) {
 	var dnsList []string
 	dnsConfig := nbdns.Config{}
-	dnsServer := NewDefaultServerPermanentUpstream(context.Background(), wgIFace, dnsList, dnsConfig, nil, &peer.Status{})
+	dnsServer := NewDefaultServerPermanentUpstream(context.Background(), wgIFace, dnsList, dnsConfig, nil)
 	err = dnsServer.Initialize()
 	if err != nil {
 		t.Errorf("failed to initialize DNS server: %v", err)
@@ -627,7 +621,7 @@ func TestDNSPermanent_updateUpstream(t *testing.T) {
 	}
 	defer wgIFace.Close()
 	dnsConfig := nbdns.Config{}
-	dnsServer := NewDefaultServerPermanentUpstream(context.Background(), wgIFace, []string{"8.8.8.8"}, dnsConfig, nil, &peer.Status{})
+	dnsServer := NewDefaultServerPermanentUpstream(context.Background(), wgIFace, []string{"8.8.8.8"}, dnsConfig, nil)
 	err = dnsServer.Initialize()
 	if err != nil {
 		t.Errorf("failed to initialize DNS server: %v", err)
@@ -719,7 +713,7 @@ func TestDNSPermanent_matchOnly(t *testing.T) {
 	}
 	defer wgIFace.Close()
 	dnsConfig := nbdns.Config{}
-	dnsServer := NewDefaultServerPermanentUpstream(context.Background(), wgIFace, []string{"8.8.8.8"}, dnsConfig, nil, &peer.Status{})
+	dnsServer := NewDefaultServerPermanentUpstream(context.Background(), wgIFace, []string{"8.8.8.8"}, dnsConfig, nil)
 	err = dnsServer.Initialize()
 	if err != nil {
 		t.Errorf("failed to initialize DNS server: %v", err)
--- a/client/internal/dns/service_listener.go
+++ b/client/internal/dns/service_listener.go
@@ -28,7 +28,7 @@ type serviceViaListener struct {
 	customAddr        *netip.AddrPort
 	server            *dns.Server
 	listenIP          string
-	listenPort        uint16
+	listenPort        int
 	listenerIsRunning bool
 	listenerFlagLock  sync.Mutex
 	ebpfService       ebpfMgr.Manager
@@ -63,9 +63,18 @@ func (s *serviceViaListener) Listen() error {
 	s.listenIP, s.listenPort, err = s.evalListenAddress()
 	if err != nil {
 		log.Errorf("failed to eval runtime address: %s", err)
-		return fmt.Errorf("eval listen address: %w", err)
+		return err
 	}
 	s.server.Addr = fmt.Sprintf("%s:%d", s.listenIP, s.listenPort)
 	if s.shouldApplyPortFwd() {
 		s.ebpfService = ebpf.GetEbpfManagerInstance()
 		err = s.ebpfService.LoadDNSFwd(s.listenIP, s.listenPort)
 		if err != nil {
 			log.Warnf("failed to load DNS port forwarder, custom port may not work well on some Linux operating systems: %s", err)
 			s.ebpfService = nil
 		}
 	}
 	log.Debugf("starting dns on %s", s.server.Addr)
 	go func() {
 		s.setListenerStatus(true)
@@ -119,7 +128,7 @@ func (s *serviceViaListener) RuntimePort() int {
 	if s.ebpfService != nil {
 		return defaultPort
 	} else {
-		return int(s.listenPort)
+		return s.listenPort
 	}
 }
@@ -131,112 +140,54 @@ func (s *serviceViaListener) setListenerStatus(running bool) {
 	s.listenerIsRunning = running
 }
-// evalListenAddress figure out the listen address for the DNS server
+func (s *serviceViaListener) getFirstListenerAvailable() (string, int, error) {
-// first check the 53 port availability on WG interface or lo, if not success
+	ips := []string{defaultIP, customIP}
 // pick a random port on WG interface for eBPF, if not success
 // check the 5053 port availability on WG interface or lo without eBPF usage,
 func (s *serviceViaListener) evalListenAddress() (string, uint16, error) {
 	if s.customAddr != nil {
 		return s.customAddr.Addr().String(), s.customAddr.Port(), nil
 	}
 	ip, ok := s.testFreePort(defaultPort)
 	if ok {
 		return ip, defaultPort, nil
 	}
 	ebpfSrv, port, ok := s.tryToUseeBPF()
 	if ok {
 		s.ebpfService = ebpfSrv
 		return s.wgInterface.Address().IP.String(), port, nil
 	}
 	ip, ok = s.testFreePort(customPort)
 	if ok {
 		return ip, customPort, nil
 	}
 	return "", 0, fmt.Errorf("failed to find a free port for DNS server")
 }
 func (s *serviceViaListener) testFreePort(port int) (string, bool) {
 	var ips []string
 	if runtime.GOOS != "darwin" {
-		ips = []string{s.wgInterface.Address().IP.String(), defaultIP, customIP}
+		ips = append([]string{s.wgInterface.Address().IP.String()}, ips...)
 	} else {
 		ips = []string{defaultIP, customIP}
 	}
-
+	ports := []int{defaultPort, customPort}
-	for _, ip := range ips {
+	for _, port := range ports {
-		if !s.tryToBind(ip, port) {
+		for _, ip := range ips {
-			continue
+			addrString := fmt.Sprintf("%s:%d", ip, port)
 			udpAddr := net.UDPAddrFromAddrPort(netip.MustParseAddrPort(addrString))
 			probeListener, err := net.ListenUDP("udp", udpAddr)
 			if err == nil {
 				err = probeListener.Close()
 				if err != nil {
 					log.Errorf("got an error closing the probe listener, error: %s", err)
 				}
 				return ip, port, nil
 			}
 			log.Warnf("binding dns on %s is not available, error: %s", addrString, err)
 		}
 		return ip, true
 	}
-	return "", false
+	return "", 0, fmt.Errorf("unable to find an unused ip and port combination. IPs tested: %v and ports %v", ips, ports)
 }
-func (s *serviceViaListener) tryToBind(ip string, port int) bool {
+func (s *serviceViaListener) evalListenAddress() (string, int, error) {
-	addrString := fmt.Sprintf("%s:%d", ip, port)
+	if s.customAddr != nil {
-	udpAddr := net.UDPAddrFromAddrPort(netip.MustParseAddrPort(addrString))
+		return s.customAddr.Addr().String(), int(s.customAddr.Port()), nil
-	probeListener, err := net.ListenUDP("udp", udpAddr)
+	}
-	if err != nil {
+
-		log.Warnf("binding dns on %s is not available, error: %s", addrString, err)
+	return s.getFirstListenerAvailable()
 }
 // shouldApplyPortFwd decides whether to apply eBPF program to capture DNS traffic on port 53.
 // This is needed because on some operating systems if we start a DNS server not on a default port 53, the domain name
 // resolution won't work.
 // So, in case we are running on Linux and picked a non-default port (53) we should fall back to the eBPF solution that will capture
 // traffic on port 53 and forward it to a local DNS server running on 5053.
 func (s *serviceViaListener) shouldApplyPortFwd() bool {
 	if runtime.GOOS != "linux" {
 		return false
 	}
-	err = probeListener.Close()
+	if s.customAddr != nil {
-	if err != nil {
+		return false
-		log.Errorf("got an error closing the probe listener, error: %s", err)
+	}
 	if s.listenPort == defaultPort {
 		return false
 	}
 	return true
 }
 // tryToUseeBPF decides whether to apply eBPF program to capture DNS traffic on port 53.
 // This is needed because on some operating systems if we start a DNS server not on a default port 53,
 // the domain name  resolution won't work. So, in case we are running on Linux and picked a free
 // port we should fall back to the eBPF solution that will capture traffic on port 53 and forward
 // it to a local DNS server running on the chosen port.
 func (s *serviceViaListener) tryToUseeBPF() (ebpfMgr.Manager, uint16, bool) {
 	if runtime.GOOS != "linux" {
 		return nil, 0, false
 	}
 	port, err := s.generateFreePort() //nolint:staticcheck,unused
 	if err != nil {
 		log.Warnf("failed to generate a free port for eBPF DNS forwarder server: %s", err)
 		return nil, 0, false
 	}
 	ebpfSrv := ebpf.GetEbpfManagerInstance()
 	err = ebpfSrv.LoadDNSFwd(s.wgInterface.Address().IP.String(), int(port))
 	if err != nil {
 		log.Warnf("failed to load DNS forwarder eBPF program, error: %s", err)
 		return nil, 0, false
 	}
 	return ebpfSrv, port, true
 }
 func (s *serviceViaListener) generateFreePort() (uint16, error) {
 	ok := s.tryToBind(s.wgInterface.Address().IP.String(), customPort)
 	if ok {
 		return customPort, nil
 	}
 	udpAddr := net.UDPAddrFromAddrPort(netip.MustParseAddrPort("0.0.0.0:0"))
 	probeListener, err := net.ListenUDP("udp", udpAddr)
 	if err != nil {
 		log.Debugf("failed to bind random port for DNS: %s", err)
 		return 0, err
 	}
 	addrPort := netip.MustParseAddrPort(probeListener.LocalAddr().String()) // might panic if address is incorrect
 	err = probeListener.Close()
 	if err != nil {
 		log.Debugf("failed to free up DNS port: %s", err)
 		return 0, err
 	}
 	return addrPort.Port(), nil
 }
--- a/client/internal/dns/service_memory.go
+++ b/client/internal/dns/service_memory.go
@@ -44,7 +44,7 @@ func (s *serviceViaMemory) Listen() error {
 	var err error
 	s.udpFilterHookID, err = s.filterDNSTraffic()
 	if err != nil {
-		return fmt.Errorf("filter dns traffice: %w", err)
+		return err
 	}
 	s.listenerIsRunning = true
--- a/client/internal/dns/systemd_linux.go
+++ b/client/internal/dns/systemd_linux.go
@@ -4,7 +4,6 @@ package dns
 import (
 	"context"
 	"errors"
 	"fmt"
 	"net"
 	"net/netip"
@@ -31,8 +30,6 @@ const (
 	systemdDbusSetDefaultRouteMethodSuffix = systemdDbusLinkInterface + ".SetDefaultRoute"
 	systemdDbusSetDomainsMethodSuffix      = systemdDbusLinkInterface + ".SetDomains"
 	systemdDbusResolvConfModeForeign       = "foreign"
 	dbusErrorUnknownObject = "org.freedesktop.DBus.Error.UnknownObject"
 )
 type systemdDbusConfigurator struct {
@@ -55,22 +52,22 @@ type systemdDbusLinkDomainsInput struct {
 	MatchOnly bool
 }
-func newSystemdDbusConfigurator(wgInterface string) (hostManager, error) {
+func newSystemdDbusConfigurator(wgInterface WGIface) (hostManager, error) {
-	iface, err := net.InterfaceByName(wgInterface)
+	iface, err := net.InterfaceByName(wgInterface.Name())
 	if err != nil {
-		return nil, fmt.Errorf("get interface: %w", err)
+		return nil, err
 	}
 	obj, closeConn, err := getDbusObject(systemdResolvedDest, systemdDbusObjectNode)
 	if err != nil {
-		return nil, fmt.Errorf("get dbus resolved dest: %w", err)
+		return nil, err
 	}
 	defer closeConn()
 	var s string
 	err = obj.Call(systemdDbusGetLinkMethod, dbusDefaultFlag, iface.Index).Store(&s)
 	if err != nil {
-		return nil, fmt.Errorf("get dbus link method: %w", err)
+		return nil, err
 	}
 	log.Debugf("got dbus Link interface: %s from net interface %s and index %d", s, iface.Name, iface.Index)
@@ -87,7 +84,7 @@ func (s *systemdDbusConfigurator) supportCustomPort() bool {
 func (s *systemdDbusConfigurator) applyDNSConfig(config HostDNSConfig) error {
 	parsedIP, err := netip.ParseAddr(config.ServerIP)
 	if err != nil {
-		return fmt.Errorf("unable to parse ip address, error: %w", err)
+		return fmt.Errorf("unable to parse ip address, error: %s", err)
 	}
 	ipAs4 := parsedIP.As4()
 	defaultLinkInput := systemdDbusDNSInput{
@@ -96,7 +93,7 @@ func (s *systemdDbusConfigurator) applyDNSConfig(config HostDNSConfig) error {
 	}
 	err = s.callLinkMethod(systemdDbusSetDNSMethodSuffix, []systemdDbusDNSInput{defaultLinkInput})
 	if err != nil {
-		return fmt.Errorf("setting the interface DNS server %s:%d failed with error: %w", config.ServerIP, config.ServerPort, err)
+		return fmt.Errorf("setting the interface DNS server %s:%d failed with error: %s", config.ServerIP, config.ServerPort, err)
 	}
 	var (
@@ -124,7 +121,7 @@ func (s *systemdDbusConfigurator) applyDNSConfig(config HostDNSConfig) error {
 		log.Infof("configured %s:%d as main DNS forwarder for this peer", config.ServerIP, config.ServerPort)
 		err = s.callLinkMethod(systemdDbusSetDefaultRouteMethodSuffix, true)
 		if err != nil {
-			return fmt.Errorf("setting link as default dns router, failed with error: %w", err)
+			return fmt.Errorf("setting link as default dns router, failed with error: %s", err)
 		}
 		domainsInput = append(domainsInput, systemdDbusLinkDomainsInput{
 			Domain:    nbdns.RootZone,
@@ -135,12 +132,6 @@ func (s *systemdDbusConfigurator) applyDNSConfig(config HostDNSConfig) error {
 		log.Infof("removing %s:%d as main DNS forwarder for this peer", config.ServerIP, config.ServerPort)
 	}
 	// create a backup for unclean shutdown detection before adding domains, as these might end up in the resolv.conf file.
 	// The file content itself is not important for systemd restoration
 	if err := createUncleanShutdownIndicator(defaultResolvConfPath, systemdManager, parsedIP.String()); err != nil {
 		log.Errorf("failed to create unclean shutdown resolv.conf backup: %s", err)
 	}
 	log.Infof("adding %d search domains and %d match domains. Search list: %s , Match list: %s", len(searchDomains), len(matchDomains), searchDomains, matchDomains)
 	err = s.setDomainsForInterface(domainsInput)
 	if err != nil {
@@ -152,7 +143,7 @@ func (s *systemdDbusConfigurator) applyDNSConfig(config HostDNSConfig) error {
 func (s *systemdDbusConfigurator) setDomainsForInterface(domainsInput []systemdDbusLinkDomainsInput) error {
 	err := s.callLinkMethod(systemdDbusSetDomainsMethodSuffix, domainsInput)
 	if err != nil {
-		return fmt.Errorf("setting domains configuration failed with error: %w", err)
+		return fmt.Errorf("setting domains configuration failed with error: %s", err)
 	}
 	return s.flushCaches()
 }
@@ -162,29 +153,17 @@ func (s *systemdDbusConfigurator) restoreHostDNS() error {
 	if !isDbusListenerRunning(systemdResolvedDest, s.dbusLinkObject) {
 		return nil
 	}
 	// this call is required for DNS cleanup, even if it fails
 	err := s.callLinkMethod(systemdDbusRevertMethodSuffix, nil)
 	if err != nil {
-		var dbusErr dbus.Error
+		return fmt.Errorf("unable to revert link configuration, got error: %s", err)
 		if errors.As(err, &dbusErr) && dbusErr.Name == dbusErrorUnknownObject {
 			// interface is gone already
 			return nil
 		}
 		return fmt.Errorf("unable to revert link configuration, got error: %w", err)
 	}
 	if err := removeUncleanShutdownIndicator(); err != nil {
 		log.Errorf("failed to remove unclean shutdown resolv.conf backup: %s", err)
 	}
 	return s.flushCaches()
 }
 func (s *systemdDbusConfigurator) flushCaches() error {
 	obj, closeConn, err := getDbusObject(systemdResolvedDest, systemdDbusObjectNode)
 	if err != nil {
-		return fmt.Errorf("attempting to retrieve the object %s, err: %w", systemdDbusObjectNode, err)
+		return fmt.Errorf("got error while attempting to retrieve the object %s, err: %s", systemdDbusObjectNode, err)
 	}
 	defer closeConn()
 	ctx, cancel := context.WithTimeout(context.TODO(), 5*time.Second)
@@ -192,7 +171,7 @@ func (s *systemdDbusConfigurator) flushCaches() error {
 	err = obj.CallWithContext(ctx, systemdDbusFlushCachesMethod, dbusDefaultFlag).Store()
 	if err != nil {
-		return fmt.Errorf("calling the FlushCaches method with context, err: %w", err)
+		return fmt.Errorf("got error while calling the FlushCaches method with context, err: %s", err)
 	}
 	return nil
@@ -201,7 +180,7 @@ func (s *systemdDbusConfigurator) flushCaches() error {
 func (s *systemdDbusConfigurator) callLinkMethod(method string, value any) error {
 	obj, closeConn, err := getDbusObject(systemdResolvedDest, s.dbusLinkObject)
 	if err != nil {
-		return fmt.Errorf("attempting to retrieve the object, err: %w", err)
+		return fmt.Errorf("got error while attempting to retrieve the object, err: %s", err)
 	}
 	defer closeConn()
@@ -215,29 +194,22 @@ func (s *systemdDbusConfigurator) callLinkMethod(method string, value any) error
 	}
 	if err != nil {
-		return fmt.Errorf("calling command with context, err: %w", err)
+		return fmt.Errorf("got error while calling command with context, err: %s", err)
 	}
 	return nil
 }
 func (s *systemdDbusConfigurator) restoreUncleanShutdownDNS(*netip.Addr) error {
 	if err := s.restoreHostDNS(); err != nil {
 		return fmt.Errorf("restoring dns via systemd: %w", err)
 	}
 	return nil
 }
 func getSystemdDbusProperty(property string, store any) error {
 	obj, closeConn, err := getDbusObject(systemdResolvedDest, systemdDbusObjectNode)
 	if err != nil {
-		return fmt.Errorf("attempting to retrieve the systemd dns manager object, error: %w", err)
+		return fmt.Errorf("got error while attempting to retrieve the systemd dns manager object, error: %s", err)
 	}
 	defer closeConn()
 	v, e := obj.GetProperty(property)
 	if e != nil {
-		return fmt.Errorf("getting property %s: %w", property, e)
+		return fmt.Errorf("got an error getting property %s: %v", property, e)
 	}
 	return v.Store(store)
--- a/client/internal/dns/unclean_shutdown_android.go
+++ b/client/internal/dns/unclean_shutdown_android.go
@@ -1,5 +0,0 @@
 package dns
 func CheckUncleanShutdown(string) error {
 	return nil
 }
--- a/client/internal/dns/unclean_shutdown_darwin.go
+++ b/client/internal/dns/unclean_shutdown_darwin.go
@@ -1,59 +0,0 @@
 //go:build !ios
 package dns
 import (
 	"errors"
 	"fmt"
 	"io/fs"
 	"os"
 	"path/filepath"
 	log "github.com/sirupsen/logrus"
 )
 const fileUncleanShutdownFileLocation = "/var/lib/netbird/unclean_shutdown_dns"
 func CheckUncleanShutdown(string) error {
 	if _, err := os.Stat(fileUncleanShutdownFileLocation); err != nil {
 		if errors.Is(err, fs.ErrNotExist) {
 			// no file -> clean shutdown
 			return nil
 		} else {
 			return fmt.Errorf("state: %w", err)
 		}
 	}
 	log.Warnf("detected unclean shutdown, file %s exists. Restoring unclean shutdown dns settings.", fileUncleanShutdownFileLocation)
 	manager, err := newHostManager()
 	if err != nil {
 		return fmt.Errorf("create host manager: %w", err)
 	}
 	if err := manager.restoreUncleanShutdownDNS(nil); err != nil {
 		return fmt.Errorf("restore unclean shutdown backup: %w", err)
 	}
 	return nil
 }
 func createUncleanShutdownIndicator() error {
 	dir := filepath.Dir(fileUncleanShutdownFileLocation)
 	if err := os.MkdirAll(dir, os.FileMode(0755)); err != nil {
 		return fmt.Errorf("create dir %s: %w", dir, err)
 	}
 	if err := os.WriteFile(fileUncleanShutdownFileLocation, nil, 0644); err != nil { //nolint:gosec
 		return fmt.Errorf("create %s: %w", fileUncleanShutdownFileLocation, err)
 	}
 	return nil
 }
 func removeUncleanShutdownIndicator() error {
 	if err := os.Remove(fileUncleanShutdownFileLocation); err != nil && !errors.Is(err, fs.ErrNotExist) {
 		return fmt.Errorf("remove %s: %w", fileUncleanShutdownFileLocation, err)
 	}
 	return nil
 }
--- a/client/internal/dns/unclean_shutdown_ios.go
+++ b/client/internal/dns/unclean_shutdown_ios.go
@@ -1,5 +0,0 @@
 package dns
 func CheckUncleanShutdown(string) error {
 	return nil
 }
--- a/client/internal/dns/unclean_shutdown_linux.go
+++ b/client/internal/dns/unclean_shutdown_linux.go
@@ -1,96 +0,0 @@
 //go:build !android
 package dns
 import (
 	"errors"
 	"fmt"
 	"io/fs"
 	"net/netip"
 	"os"
 	"path/filepath"
 	"strings"
 	log "github.com/sirupsen/logrus"
 )
 const (
 	fileUncleanShutdownResolvConfLocation  = "/var/lib/netbird/resolv.conf"
 	fileUncleanShutdownManagerTypeLocation = "/var/lib/netbird/manager"
 )
 func CheckUncleanShutdown(wgIface string) error {
 	if _, err := os.Stat(fileUncleanShutdownResolvConfLocation); err != nil {
 		if errors.Is(err, fs.ErrNotExist) {
 			// no file -> clean shutdown
 			return nil
 		} else {
 			return fmt.Errorf("state: %w", err)
 		}
 	}
 	log.Warnf("detected unclean shutdown, file %s exists", fileUncleanShutdownResolvConfLocation)
 	managerData, err := os.ReadFile(fileUncleanShutdownManagerTypeLocation)
 	if err != nil {
 		return fmt.Errorf("read %s: %w", fileUncleanShutdownManagerTypeLocation, err)
 	}
 	managerFields := strings.Split(string(managerData), ",")
 	if len(managerFields) < 2 {
 		return errors.New("split manager data: insufficient number of fields")
 	}
 	osManagerTypeStr, dnsAddressStr := managerFields[0], managerFields[1]
 	dnsAddress, err := netip.ParseAddr(dnsAddressStr)
 	if err != nil {
 		return fmt.Errorf("parse dns address %s failed: %w", dnsAddressStr, err)
 	}
 	log.Warnf("restoring unclean shutdown dns settings via previously detected manager: %s", osManagerTypeStr)
 	// determine os manager type, so we can invoke the respective restore action
 	osManagerType, err := newOsManagerType(osManagerTypeStr)
 	if err != nil {
 		return fmt.Errorf("detect previous host manager: %w", err)
 	}
 	manager, err := newHostManagerFromType(wgIface, osManagerType)
 	if err != nil {
 		return fmt.Errorf("create previous host manager: %w", err)
 	}
 	if err := manager.restoreUncleanShutdownDNS(&dnsAddress); err != nil {
 		return fmt.Errorf("restore unclean shutdown backup: %w", err)
 	}
 	return nil
 }
 func createUncleanShutdownIndicator(sourcePath string, managerType osManagerType, dnsAddress string) error {
 	dir := filepath.Dir(fileUncleanShutdownResolvConfLocation)
 	if err := os.MkdirAll(dir, os.FileMode(0755)); err != nil {
 		return fmt.Errorf("create dir %s: %w", dir, err)
 	}
 	if err := copyFile(sourcePath, fileUncleanShutdownResolvConfLocation); err != nil {
 		return fmt.Errorf("create %s: %w", sourcePath, err)
 	}
 	managerData := fmt.Sprintf("%s,%s", managerType, dnsAddress)
 	if err := os.WriteFile(fileUncleanShutdownManagerTypeLocation, []byte(managerData), 0644); err != nil { //nolint:gosec
 		return fmt.Errorf("create %s: %w", fileUncleanShutdownManagerTypeLocation, err)
 	}
 	return nil
 }
 func removeUncleanShutdownIndicator() error {
 	if err := os.Remove(fileUncleanShutdownResolvConfLocation); err != nil && !errors.Is(err, fs.ErrNotExist) {
 		return fmt.Errorf("remove %s: %w", fileUncleanShutdownResolvConfLocation, err)
 	}
 	if err := os.Remove(fileUncleanShutdownManagerTypeLocation); err != nil && !errors.Is(err, fs.ErrNotExist) {
 		return fmt.Errorf("remove %s: %w", fileUncleanShutdownManagerTypeLocation, err)
 	}
 	return nil
 }
--- a/client/internal/dns/unclean_shutdown_windows.go
+++ b/client/internal/dns/unclean_shutdown_windows.go
@@ -1,75 +0,0 @@
 package dns
 import (
 	"errors"
 	"fmt"
 	"io/fs"
 	"os"
 	"path/filepath"
 	"github.com/sirupsen/logrus"
 )
 const (
 	netbirdProgramDataLocation = "Netbird"
 	fileUncleanShutdownFile    = "unclean_shutdown_dns.txt"
 )
 func CheckUncleanShutdown(string) error {
 	file := getUncleanShutdownFile()
 	if _, err := os.Stat(file); err != nil {
 		if errors.Is(err, fs.ErrNotExist) {
 			// no file -> clean shutdown
 			return nil
 		} else {
 			return fmt.Errorf("state: %w", err)
 		}
 	}
 	logrus.Warnf("detected unclean shutdown, file %s exists. Restoring unclean shutdown dns settings.", file)
 	guid, err := os.ReadFile(file)
 	if err != nil {
 		return fmt.Errorf("read %s: %w", file, err)
 	}
 	manager, err := newHostManagerWithGuid(string(guid))
 	if err != nil {
 		return fmt.Errorf("create host manager: %w", err)
 	}
 	if err := manager.restoreUncleanShutdownDNS(nil); err != nil {
 		return fmt.Errorf("restore unclean shutdown backup: %w", err)
 	}
 	return nil
 }
 func createUncleanShutdownIndicator(guid string) error {
 	file := getUncleanShutdownFile()
 	dir := filepath.Dir(file)
 	if err := os.MkdirAll(dir, os.FileMode(0755)); err != nil {
 		return fmt.Errorf("create dir %s: %w", dir, err)
 	}
 	if err := os.WriteFile(file, []byte(guid), 0600); err != nil {
 		return fmt.Errorf("create %s: %w", file, err)
 	}
 	return nil
 }
 func removeUncleanShutdownIndicator() error {
 	file := getUncleanShutdownFile()
 	if err := os.Remove(file); err != nil && !errors.Is(err, fs.ErrNotExist) {
 		return fmt.Errorf("remove %s: %w", file, err)
 	}
 	return nil
 }
 func getUncleanShutdownFile() string {
 	return filepath.Join(os.Getenv("PROGRAMDATA"), netbirdProgramDataLocation, fileUncleanShutdownFile)
 }
--- a/client/internal/dns/upstream.go
+++ b/client/internal/dns/upstream.go
@@ -11,24 +11,18 @@ import (
 	"time"
 	"github.com/cenkalti/backoff/v4"
 	"github.com/hashicorp/go-multierror"
 	"github.com/miekg/dns"
 	log "github.com/sirupsen/logrus"
 	"github.com/netbirdio/netbird/client/internal/peer"
 )
 const (
 	failsTillDeact   = int32(5)
 	reactivatePeriod = 30 * time.Second
 	upstreamTimeout  = 15 * time.Second
 	probeTimeout     = 2 * time.Second
 )
 const testRecord = "."
 type upstreamClient interface {
-	exchange(ctx context.Context, upstream string, r *dns.Msg) (*dns.Msg, time.Duration, error)
+	exchange(upstream string, r *dns.Msg) (*dns.Msg, time.Duration, error)
 }
 type UpstreamResolver interface {
@@ -48,13 +42,12 @@ type upstreamResolverBase struct {
 	reactivatePeriod time.Duration
 	upstreamTimeout  time.Duration
-	deactivate     func(error)
+	deactivate func()
-	reactivate     func()
+	reactivate func()
 	statusRecorder *peer.Status
 }
-func newUpstreamResolverBase(ctx context.Context, statusRecorder *peer.Status) *upstreamResolverBase {
+func newUpstreamResolverBase(parentCTX context.Context) *upstreamResolverBase {
-	ctx, cancel := context.WithCancel(ctx)
+	ctx, cancel := context.WithCancel(parentCTX)
 	return &upstreamResolverBase{
 		ctx:              ctx,
@@ -62,7 +55,6 @@ func newUpstreamResolverBase(ctx context.Context, statusRecorder *peer.Status) *
 		upstreamTimeout:  upstreamTimeout,
 		reactivatePeriod: reactivatePeriod,
 		failsTillDeact:   failsTillDeact,
 		statusRecorder:   statusRecorder,
 	}
 }
@@ -73,10 +65,7 @@ func (u *upstreamResolverBase) stop() {
 // ServeDNS handles a DNS request
 func (u *upstreamResolverBase) ServeDNS(w dns.ResponseWriter, r *dns.Msg) {
-	var err error
+	defer u.checkUpstreamFails()
 	defer func() {
 		u.checkUpstreamFails(err)
 	}()
 	log.WithField("question", r.Question[0]).Trace("received an upstream question")
@@ -87,17 +76,11 @@ func (u *upstreamResolverBase) ServeDNS(w dns.ResponseWriter, r *dns.Msg) {
 	}
 	for _, upstream := range u.upstreamServers {
 		var rm *dns.Msg
 		var t time.Duration
-		func() {
+		rm, t, err := u.upstreamClient.exchange(upstream, r)
 			ctx, cancel := context.WithTimeout(u.ctx, u.upstreamTimeout)
 			defer cancel()
 			rm, t, err = u.upstreamClient.exchange(ctx, upstream, r)
 		}()
 		if err != nil {
-			if errors.Is(err, context.DeadlineExceeded) || isTimeout(err) {
+			if err == context.DeadlineExceeded || isTimeout(err) {
 				log.WithError(err).WithField("upstream", upstream).
 					Warn("got an error while connecting to upstream")
 				continue
@@ -139,7 +122,7 @@ func (u *upstreamResolverBase) ServeDNS(w dns.ResponseWriter, r *dns.Msg) {
 // If fails count is greater that failsTillDeact, upstream resolving
 // will be disabled for reactivatePeriod, after that time period fails counter
 // will be reset and upstream will be reactivated.
-func (u *upstreamResolverBase) checkUpstreamFails(err error) {
+func (u *upstreamResolverBase) checkUpstreamFails() {
 	u.mutex.Lock()
 	defer u.mutex.Unlock()
@@ -151,52 +134,13 @@ func (u *upstreamResolverBase) checkUpstreamFails(err error) {
 	case <-u.ctx.Done():
 		return
 	default:
-	}
+		// todo test the deactivation logic, it seems to affect the client
-
+		if runtime.GOOS != "ios" {
-	u.disable(err)
+			log.Warnf("upstream resolving is Disabled for %v", reactivatePeriod)
-}
+			u.deactivate()
-
+			u.disabled = true
-// probeAvailability tests all upstream servers simultaneously and
+			go u.waitUntilResponse()
-// disables the resolver if none work
+		}
 func (u *upstreamResolverBase) probeAvailability() {
 	u.mutex.Lock()
 	defer u.mutex.Unlock()
 	select {
 	case <-u.ctx.Done():
 		return
 	default:
 	}
 	var success bool
 	var mu sync.Mutex
 	var wg sync.WaitGroup
 	var errors *multierror.Error
 	for _, upstream := range u.upstreamServers {
 		upstream := upstream
 		wg.Add(1)
 		go func() {
 			defer wg.Done()
 			err := u.testNameserver(upstream)
 			if err != nil {
 				errors = multierror.Append(errors, err)
 				log.Warnf("probing upstream nameserver %s: %s", upstream, err)
 				return
 			}
 			mu.Lock()
 			defer mu.Unlock()
 			success = true
 		}()
 	}
 	wg.Wait()
 	// didn't find a working upstream server, let's disable and try later
 	if !success {
 		u.disable(errors.ErrorOrNil())
 	}
 }
@@ -212,6 +156,8 @@ func (u *upstreamResolverBase) waitUntilResponse() {
 		Clock:               backoff.SystemClock,
 	}
 	r := new(dns.Msg).SetQuestion("netbird.io.", dns.TypeA)
 	operation := func() error {
 		select {
 		case <-u.ctx.Done():
@@ -219,17 +165,17 @@ func (u *upstreamResolverBase) waitUntilResponse() {
 		default:
 		}
 		var err error
 		for _, upstream := range u.upstreamServers {
-			if err := u.testNameserver(upstream); err != nil {
+			_, _, err = u.upstreamClient.exchange(upstream, r)
-				log.Tracef("upstream check for %s: %s", upstream, err)
+
-			} else {
+			if err == nil {
 				// at least one upstream server is available, stop probing
 				return nil
 			}
 		}
-		log.Tracef("checking connectivity with upstreams %s failed. Retrying in %s", u.upstreamServers, exponentialBackOff.NextBackOff())
+		log.Tracef("checking connectivity with upstreams %s failed with error: %s. Retrying in %s", err, u.upstreamServers, exponentialBackOff.NextBackOff())
-		return fmt.Errorf("upstream check call error")
+		return fmt.Errorf("got an error from upstream check call")
 	}
 	err := backoff.Retry(operation, exponentialBackOff)
@@ -254,27 +200,3 @@ func isTimeout(err error) bool {
 	}
 	return false
 }
 func (u *upstreamResolverBase) disable(err error) {
 	if u.disabled {
 		return
 	}
 	// todo test the deactivation logic, it seems to affect the client
 	if runtime.GOOS != "ios" {
 		log.Warnf("Upstream resolving is Disabled for %v", reactivatePeriod)
 		u.deactivate(err)
 		u.disabled = true
 		go u.waitUntilResponse()
 	}
 }
 func (u *upstreamResolverBase) testNameserver(server string) error {
 	ctx, cancel := context.WithTimeout(u.ctx, probeTimeout)
 	defer cancel()
 	r := new(dns.Msg).SetQuestion(testRecord, dns.TypeSOA)
 	_, _, err := u.upstreamClient.exchange(ctx, server, r)
 	return err
 }
--- a/client/internal/dns/upstream_ios.go
+++ b/client/internal/dns/upstream_ios.go
@@ -11,8 +11,6 @@ import (
 	"github.com/miekg/dns"
 	log "github.com/sirupsen/logrus"
 	"golang.org/x/sys/unix"
 	"github.com/netbirdio/netbird/client/internal/peer"
 )
 type upstreamResolverIOS struct {
@@ -22,14 +20,8 @@ type upstreamResolverIOS struct {
 	iIndex int
 }
-func newUpstreamResolver(
+func newUpstreamResolver(parentCTX context.Context, interfaceName string, ip net.IP, net *net.IPNet) (*upstreamResolverIOS, error) {
-	ctx context.Context,
+	upstreamResolverBase := newUpstreamResolverBase(parentCTX)
 	interfaceName string,
 	ip net.IP,
 	net *net.IPNet,
 	statusRecorder *peer.Status,
 ) (*upstreamResolverIOS, error) {
 	upstreamResolverBase := newUpstreamResolverBase(ctx, statusRecorder)
 	index, err := getInterfaceIndex(interfaceName)
 	if err != nil {
@@ -48,38 +40,30 @@ func newUpstreamResolver(
 	return ios, nil
 }
-func (u *upstreamResolverIOS) exchange(ctx context.Context, upstream string, r *dns.Msg) (rm *dns.Msg, t time.Duration, err error) {
+func (u *upstreamResolverIOS) exchange(upstream string, r *dns.Msg) (rm *dns.Msg, t time.Duration, err error) {
 	client := &dns.Client{}
 	upstreamHost, _, err := net.SplitHostPort(upstream)
 	if err != nil {
 		log.Errorf("error while parsing upstream host: %s", err)
 	}
 	timeout := upstreamTimeout
 	if deadline, ok := ctx.Deadline(); ok {
 		timeout = time.Until(deadline)
 	}
 	client.DialTimeout = timeout
 	upstreamIP := net.ParseIP(upstreamHost)
 	if u.lNet.Contains(upstreamIP) || net.IP.IsPrivate(upstreamIP) {
 		log.Debugf("using private client to query upstream: %s", upstream)
-		client = u.getClientPrivate(timeout)
+		client = u.getClientPrivate()
 	}
 	// Cannot use client.ExchangeContext because it overwrites our Dialer
 	return client.Exchange(r, upstream)
 }
 // getClientPrivate returns a new DNS client bound to the local IP address of the Netbird interface
 // This method is needed for iOS
-func (u *upstreamResolverIOS) getClientPrivate(dialTimeout time.Duration) *dns.Client {
+func (u *upstreamResolverIOS) getClientPrivate() *dns.Client {
 	dialer := &net.Dialer{
 		LocalAddr: &net.UDPAddr{
 			IP:   u.lIP,
 			Port: 0, // Let the OS pick a free port
 		},
-		Timeout: dialTimeout,
+		Timeout: upstreamTimeout,
 		Control: func(network, address string, c syscall.RawConn) error {
 			var operr error
 			fn := func(s uintptr) {
--- a/client/internal/dns/upstream_nonios.go
+++ b/client/internal/dns/upstream_nonios.go
@@ -8,22 +8,14 @@ import (
 	"time"
 	"github.com/miekg/dns"
 	"github.com/netbirdio/netbird/client/internal/peer"
 )
 type upstreamResolverNonIOS struct {
 	*upstreamResolverBase
 }
-func newUpstreamResolver(
+func newUpstreamResolver(parentCTX context.Context, interfaceName string, ip net.IP, net *net.IPNet) (*upstreamResolverNonIOS, error) {
-	ctx context.Context,
+	upstreamResolverBase := newUpstreamResolverBase(parentCTX)
 	_ string,
 	_ net.IP,
 	_ *net.IPNet,
 	statusRecorder *peer.Status,
 ) (*upstreamResolverNonIOS, error) {
 	upstreamResolverBase := newUpstreamResolverBase(ctx, statusRecorder)
 	nonIOS := &upstreamResolverNonIOS{
 		upstreamResolverBase: upstreamResolverBase,
 	}
@@ -31,7 +23,10 @@ func newUpstreamResolver(
 	return nonIOS, nil
 }
-func (u *upstreamResolverNonIOS) exchange(ctx context.Context, upstream string, r *dns.Msg) (rm *dns.Msg, t time.Duration, err error) {
+func (u *upstreamResolverNonIOS) exchange(upstream string, r *dns.Msg) (rm *dns.Msg, t time.Duration, err error) {
 	upstreamExchangeClient := &dns.Client{}
-	return upstreamExchangeClient.ExchangeContext(ctx, r, upstream)
+	ctx, cancel := context.WithTimeout(u.ctx, u.upstreamTimeout)
 	rm, t, err = upstreamExchangeClient.ExchangeContext(ctx, r, upstream)
 	cancel()
 	return rm, t, err
 }
--- a/client/internal/dns/upstream_test.go
+++ b/client/internal/dns/upstream_test.go
@@ -58,7 +58,7 @@ func TestUpstreamResolver_ServeDNS(t *testing.T) {
 	for _, testCase := range testCases {
 		t.Run(testCase.name, func(t *testing.T) {
 			ctx, cancel := context.WithCancel(context.TODO())
-			resolver, _ := newUpstreamResolver(ctx, "", net.IP{}, &net.IPNet{}, nil)
+			resolver, _ := newUpstreamResolver(ctx, "", net.IP{}, &net.IPNet{})
 			resolver.upstreamServers = testCase.InputServers
 			resolver.upstreamTimeout = testCase.timeout
 			if testCase.cancelCTX {
@@ -105,8 +105,8 @@ type mockUpstreamResolver struct {
 	err error
 }
-// exchange mock implementation of exchange from upstreamResolver
+// ExchangeContext mock implementation of ExchangeContext from upstreamResolver
-func (c mockUpstreamResolver) exchange(_ context.Context, _ string, _ *dns.Msg) (*dns.Msg, time.Duration, error) {
+func (c mockUpstreamResolver) exchange(upstream string, r *dns.Msg) (*dns.Msg, time.Duration, error) {
 	return c.r, c.rtt, c.err
 }
@@ -131,7 +131,7 @@ func TestUpstreamResolver_DeactivationReactivation(t *testing.T) {
 	}
 	failed := false
-	resolver.deactivate = func(error) {
+	resolver.deactivate = func() {
 		failed = true
 	}
--- a/client/internal/dns/wgiface.go
+++ b/client/internal/dns/wgiface.go
@@ -11,5 +11,4 @@ type WGIface interface {
 	IsUserspaceBind() bool
 	GetFilter() iface.PacketFilter
 	GetDevice() *iface.DeviceWrapper
 	GetStats(peerKey string) (iface.WGStats, error)
 }
--- a/client/internal/dns/wgiface_windows.go
+++ b/client/internal/dns/wgiface_windows.go
@@ -9,6 +9,5 @@ type WGIface interface {
 	IsUserspaceBind() bool
 	GetFilter() iface.PacketFilter
 	GetDevice() *iface.DeviceWrapper
 	GetStats(peerKey string) (iface.WGStats, error)
 	GetInterfaceGUIDString() (string, error)
 }
--- a/client/internal/ebpf/ebpf/dns_fwd_linux.go
+++ b/client/internal/ebpf/ebpf/dns_fwd_linux.go
@@ -13,7 +13,7 @@ const (
 )
 func (tf *GeneralManager) LoadDNSFwd(ip string, dnsPort int) error {
-	log.Debugf("load eBPF DNS forwarder, watching addr: %s:53, redirect to port: %d", ip, dnsPort)
+	log.Debugf("load ebpf DNS forwarder: address: %s:%d", ip, dnsPort)
 	tf.lock.Lock()
 	defer tf.lock.Unlock()
--- a/client/internal/ebpf/ebpf/src/readme.md
+++ b/client/internal/ebpf/ebpf/src/readme.md
@@ -1,11 +1,6 @@
 # DNS forwarder
 The agent attach the XDP program to the lo device. We can not use fake address in eBPF because the
 traffic does not appear in the eBPF program. The program capture the traffic on wg_ip:53 and 
 overwrite in it the destination port to 5053.
 # Debug
 The CONFIG_BPF_EVENTS kernel module is required for bpf_printk.
 Apply this code to use bpf_printk
 ```
--- a/client/internal/engine.go
+++ b/client/internal/engine.go
@@ -22,7 +22,6 @@ import (
 	"github.com/netbirdio/netbird/client/internal/acl"
 	"github.com/netbirdio/netbird/client/internal/dns"
 	"github.com/netbirdio/netbird/client/internal/peer"
 	"github.com/netbirdio/netbird/client/internal/relay"
 	"github.com/netbirdio/netbird/client/internal/rosenpass"
 	"github.com/netbirdio/netbird/client/internal/routemanager"
 	"github.com/netbirdio/netbird/client/internal/wgproxy"
@@ -79,10 +78,7 @@ type EngineConfig struct {
 	CustomDNSAddress string
-	RosenpassEnabled    bool
+	RosenpassEnabled bool
 	RosenpassPermissive bool
 	ServerSSHAllowed bool
 }
 // Engine is a mechanism responsible for reacting on Signal and Management stream events and managing connections to the remote peers.
@@ -129,11 +125,6 @@ type Engine struct {
 	acl          acl.Manager
 	dnsServer dns.Server
 	mgmProbe    *Probe
 	signalProbe *Probe
 	relayProbe  *Probe
 	wgProbe     *Probe
 }
 // Peer is an instance of the Connection Peer
@@ -144,43 +135,11 @@ type Peer struct {
 // NewEngine creates a new Connection Engine
 func NewEngine(
-	ctx context.Context,
+	ctx context.Context, cancel context.CancelFunc,
-	cancel context.CancelFunc,
+	signalClient signal.Client, mgmClient mgm.Client,
-	signalClient signal.Client,
+	config *EngineConfig, mobileDep MobileDependency, statusRecorder *peer.Status,
 	mgmClient mgm.Client,
 	config *EngineConfig,
 	mobileDep MobileDependency,
 	statusRecorder *peer.Status,
 ) *Engine {
 	return NewEngineWithProbes(
 		ctx,
 		cancel,
 		signalClient,
 		mgmClient,
 		config,
 		mobileDep,
 		statusRecorder,
 		nil,
 		nil,
 		nil,
 		nil,
 	)
 }
 // NewEngineWithProbes creates a new Connection Engine with probes attached
 func NewEngineWithProbes(
 	ctx context.Context,
 	cancel context.CancelFunc,
 	signalClient signal.Client,
 	mgmClient mgm.Client,
 	config *EngineConfig,
 	mobileDep MobileDependency,
 	statusRecorder *peer.Status,
 	mgmProbe *Probe,
 	signalProbe *Probe,
 	relayProbe *Probe,
 	wgProbe *Probe,
 ) *Engine {
 	return &Engine{
 		ctx:            ctx,
 		cancel:         cancel,
@@ -196,10 +155,6 @@ func NewEngineWithProbes(
 		sshServerFunc:  nbssh.DefaultSSHServer,
 		statusRecorder: statusRecorder,
 		wgProxyFactory: wgproxy.NewFactory(config.WgPort),
 		mgmProbe:       mgmProbe,
 		signalProbe:    signalProbe,
 		relayProbe:     relayProbe,
 		wgProbe:        wgProbe,
 	}
 }
@@ -237,11 +192,6 @@ func (e *Engine) Start() error {
 	if e.config.RosenpassEnabled {
 		log.Infof("rosenpass is enabled")
 		if e.config.RosenpassPermissive {
 			log.Infof("running rosenpass in permissive mode")
 		} else {
 			log.Infof("running rosenpass in strict mode")
 		}
 		e.rpManager, err = rosenpass.NewManager(e.config.PreSharedKey, e.config.WgIfaceName)
 		if err != nil {
 			return err
@@ -301,7 +251,6 @@ func (e *Engine) Start() error {
 	e.receiveSignalEvents()
 	e.receiveManagementEvents()
 	e.receiveProbeEvents()
 	return nil
 }
@@ -490,52 +439,44 @@ func isNil(server nbssh.Server) bool {
 }
 func (e *Engine) updateSSH(sshConf *mgmProto.SSHConfig) error {
-
+	if sshConf.GetSshEnabled() {
-	if !e.config.ServerSSHAllowed {
+		if runtime.GOOS == "windows" {
-		log.Warnf("running SSH server is not permitted")
+			log.Warnf("running SSH server on Windows is not supported")
-		return nil
+			return nil
 	} else {
 		if sshConf.GetSshEnabled() {
 			if runtime.GOOS == "windows" {
 				log.Warnf("running SSH server on Windows is not supported")
 				return nil
 			}
 			// start SSH server if it wasn't running
 			if isNil(e.sshServer) {
 				// nil sshServer means it has not yet been started
 				var err error
 				e.sshServer, err = e.sshServerFunc(e.config.SSHKey,
 					fmt.Sprintf("%s:%d", e.wgInterface.Address().IP.String(), nbssh.DefaultSSHPort))
 				if err != nil {
 					return err
 				}
 				go func() {
 					// blocking
 					err = e.sshServer.Start()
 					if err != nil {
 						// will throw error when we stop it even if it is a graceful stop
 						log.Debugf("stopped SSH server with error %v", err)
 					}
 					e.syncMsgMux.Lock()
 					defer e.syncMsgMux.Unlock()
 					e.sshServer = nil
 					log.Infof("stopped SSH server")
 				}()
 			} else {
 				log.Debugf("SSH server is already running")
 			}
 		} else if !isNil(e.sshServer) {
 			// Disable SSH server request, so stop it if it was running
 			err := e.sshServer.Stop()
 			if err != nil {
 				log.Warnf("failed to stop SSH server %v", err)
 			}
 			e.sshServer = nil
 		}
-		return nil
+		// start SSH server if it wasn't running
-
+		if isNil(e.sshServer) {
 			// nil sshServer means it has not yet been started
 			var err error
 			e.sshServer, err = e.sshServerFunc(e.config.SSHKey,
 				fmt.Sprintf("%s:%d", e.wgInterface.Address().IP.String(), nbssh.DefaultSSHPort))
 			if err != nil {
 				return err
 			}
 			go func() {
 				// blocking
 				err = e.sshServer.Start()
 				if err != nil {
 					// will throw error when we stop it even if it is a graceful stop
 					log.Debugf("stopped SSH server with error %v", err)
 				}
 				e.syncMsgMux.Lock()
 				defer e.syncMsgMux.Unlock()
 				e.sshServer = nil
 				log.Infof("stopped SSH server")
 			}()
 		} else {
 			log.Debugf("SSH server is already running")
 		}
 	} else if !isNil(e.sshServer) {
 		// Disable SSH server request, so stop it if it was running
 		err := e.sshServer.Stop()
 		if err != nil {
 			log.Warnf("failed to stop SSH server %v", err)
 		}
 		e.sshServer = nil
 	}
 	return nil
 }
 func (e *Engine) updateConfig(conf *mgmProto.PeerConfig) error {
@@ -571,7 +512,9 @@ func (e *Engine) updateConfig(conf *mgmProto.PeerConfig) error {
 // E.g. when a new peer has been registered and we are allowed to connect to it.
 func (e *Engine) receiveManagementEvents() {
 	go func() {
-		err := e.mgmClient.Sync(e.handleSync)
+		err := e.mgmClient.Sync(func(update *mgmProto.SyncResponse) error {
 			return e.handleSync(update)
 		})
 		if err != nil {
 			// happens if management is unavailable for a long time.
 			// We want to cancel the operation of the whole client
@@ -698,10 +641,6 @@ func (e *Engine) updateNetworkMap(networkMap *mgmProto.NetworkMap) error {
 		log.Errorf("failed to update dns server, err: %v", err)
 	}
 	// Test received (upstream) servers for availability right away instead of upon usage.
 	// If no server of a server group responds this will disable the respective handler and retry later.
 	e.dnsServer.ProbeAvailability()
 	if e.acl != nil {
 		e.acl.ApplyFiltering(networkMap)
 	}
@@ -876,7 +815,7 @@ func (e *Engine) createPeerConn(pubKey string, allowedIPs string) (*peer.Conn, e
 		PreSharedKey: e.config.PreSharedKey,
 	}
-	if e.config.RosenpassEnabled && !e.config.RosenpassPermissive {
+	if e.config.RosenpassEnabled {
 		lk := []byte(e.config.WgPrivateKey.PublicKey().String())
 		rk := []byte(wgConfig.RemoteKey)
 		var keyInput []byte
@@ -1096,11 +1035,6 @@ func (e *Engine) close() {
 		log.Errorf("failed closing ebpf proxy: %s", err)
 	}
 	// stop/restore DNS first so dbus and friends don't complain because of a missing interface
 	if e.dnsServer != nil {
 		e.dnsServer.Stop()
 	}
 	log.Debugf("removing Netbird interface %s", e.config.WgIfaceName)
 	if e.wgInterface != nil {
 		if err := e.wgInterface.Close(); err != nil {
@@ -1119,6 +1053,10 @@ func (e *Engine) close() {
 		e.routeManager.Stop()
 	}
 	if e.dnsServer != nil {
 		e.dnsServer.Stop()
 	}
 	if e.firewall != nil {
 		err := e.firewall.Reset()
 		if err != nil {
@@ -1188,21 +1126,14 @@ func (e *Engine) newDnsServer() ([]*route.Route, dns.Server, error) {
 		if err != nil {
 			return nil, nil, err
 		}
-		dnsServer := dns.NewDefaultServerPermanentUpstream(
+		dnsServer := dns.NewDefaultServerPermanentUpstream(e.ctx, e.wgInterface, e.mobileDep.HostDNSAddresses, *dnsConfig, e.mobileDep.NetworkChangeListener)
 			e.ctx,
 			e.wgInterface,
 			e.mobileDep.HostDNSAddresses,
 			*dnsConfig,
 			e.mobileDep.NetworkChangeListener,
 			e.statusRecorder,
 		)
 		go e.mobileDep.DnsReadyListener.OnReady()
 		return routes, dnsServer, nil
 	case "ios":
-		dnsServer := dns.NewDefaultServerIos(e.ctx, e.wgInterface, e.mobileDep.DnsManager, e.statusRecorder)
+		dnsServer := dns.NewDefaultServerIos(e.ctx, e.wgInterface, e.mobileDep.DnsManager)
 		return nil, dnsServer, nil
 	default:
-		dnsServer, err := dns.NewDefaultServer(e.ctx, e.wgInterface, e.config.CustomDNSAddress, e.statusRecorder)
+		dnsServer, err := dns.NewDefaultServer(e.ctx, e.wgInterface, e.config.CustomDNSAddress)
 		if err != nil {
 			return nil, nil, err
 		}
@@ -1244,69 +1175,3 @@ func (e *Engine) getRosenpassAddr() string {
 	}
 	return ""
 }
 func (e *Engine) receiveProbeEvents() {
 	if e.signalProbe != nil {
 		go e.signalProbe.Receive(e.ctx, func() bool {
 			healthy := e.signal.IsHealthy()
 			log.Debugf("received signal probe request, healthy: %t", healthy)
 			return healthy
 		})
 	}
 	if e.mgmProbe != nil {
 		go e.mgmProbe.Receive(e.ctx, func() bool {
 			healthy := e.mgmClient.IsHealthy()
 			log.Debugf("received management probe request, healthy: %t", healthy)
 			return healthy
 		})
 	}
 	if e.relayProbe != nil {
 		go e.relayProbe.Receive(e.ctx, func() bool {
 			healthy := true
 			results := append(e.probeSTUNs(), e.probeTURNs()...)
 			e.statusRecorder.UpdateRelayStates(results)
 			// A single failed server will result in a "failed" probe
 			for _, res := range results {
 				if res.Err != nil {
 					healthy = false
 					break
 				}
 			}
 			log.Debugf("received relay probe request, healthy: %t", healthy)
 			return healthy
 		})
 	}
 	if e.wgProbe != nil {
 		go e.wgProbe.Receive(e.ctx, func() bool {
 			log.Debug("received wg probe request")
 			for _, peer := range e.peerConns {
 				key := peer.GetKey()
 				wgStats, err := peer.GetConf().WgConfig.WgInterface.GetStats(key)
 				if err != nil {
 					log.Debugf("failed to get wg stats for peer %s: %s", key, err)
 				}
 				// wgStats could be zero value, in which case we just reset the stats
 				if err := e.statusRecorder.UpdateWireGuardPeerState(key, wgStats); err != nil {
 					log.Debugf("failed to update wg stats for peer %s: %s", key, err)
 				}
 			}
 			return true
 		})
 	}
 }
 func (e *Engine) probeSTUNs() []relay.ProbeResult {
 	return relay.ProbeAll(e.ctx, relay.ProbeSTUN, e.STUNs)
 }
 func (e *Engine) probeTURNs() []relay.ProbeResult {
 	return relay.ProbeAll(e.ctx, relay.ProbeTURN, e.TURNs)
 }
--- a/client/internal/engine_test.go
+++ b/client/internal/engine_test.go
@@ -74,7 +74,6 @@ func TestEngine_SSH(t *testing.T) {
 		WgAddr:       "100.64.0.1/24",
 		WgPrivateKey: key,
 		WgPort:       33100,
 		ServerSSHAllowed: true,
 	}, MobileDependency{}, peer.NewRecorder("https://mgm"))
 	engine.dnsServer = &dns.MockServer{
@@ -1050,7 +1049,8 @@ func startManagement(dataDir string) (*grpc.Server, string, error) {
 	if err != nil {
 		return nil, "", err
 	}
-	accountManager, err := server.BuildManager(store, peersUpdateManager, nil, "", "", eventStore, nil, false)
+	accountManager, err := server.BuildManager(store, peersUpdateManager, nil, "", "",
 		eventStore, false)
 	if err != nil {
 		return nil, "", err
 	}
--- a/client/internal/login.go
+++ b/client/internal/login.go
@@ -38,7 +38,7 @@ func IsLoginRequired(ctx context.Context, privateKey string, mgmURL *url.URL, ss
 		return false, err
 	}
-	_, err = doMgmLogin(ctx, mgmClient, pubSSHKey, &Config{})
+	_, err = doMgmLogin(ctx, mgmClient, pubSSHKey)
 	if isLoginNeeded(err) {
 		return true, nil
 	}
@@ -67,7 +67,7 @@ func Login(ctx context.Context, config *Config, setupKey string, jwtToken string
 		return err
 	}
-	serverKey, err := doMgmLogin(ctx, mgmClient, pubSSHKey, config)
+	serverKey, err := doMgmLogin(ctx, mgmClient, pubSSHKey)
 	if isRegistrationNeeded(err) {
 		log.Debugf("peer registration required")
 		_, err = registerPeer(ctx, *serverKey, mgmClient, setupKey, jwtToken, pubSSHKey)
@@ -99,14 +99,14 @@ func getMgmClient(ctx context.Context, privateKey string, mgmURL *url.URL) (*mgm
 	return mgmClient, err
 }
-func doMgmLogin(ctx context.Context, mgmClient *mgm.GrpcClient, pubSSHKey []byte, config *Config) (*wgtypes.Key, error) {
+func doMgmLogin(ctx context.Context, mgmClient *mgm.GrpcClient, pubSSHKey []byte) (*wgtypes.Key, error) {
 	serverKey, err := mgmClient.GetServerPublicKey()
 	if err != nil {
 		log.Errorf("failed while getting Management Service public key: %v", err)
 		return nil, err
 	}
-	sysInfo := system.GetInfo(ctx, *config)
+	sysInfo := system.GetInfo(ctx)
 	_, err = mgmClient.Login(*serverKey, sysInfo, pubSSHKey)
 	return serverKey, err
 }
@@ -120,7 +120,7 @@ func registerPeer(ctx context.Context, serverPublicKey wgtypes.Key, client *mgm.
 	}
 	log.Debugf("sending peer registration request to Management Service")
-	info := system.GetInfo(ctx, Config{})
+	info := system.GetInfo(ctx)
 	loginResp, err := client.Register(serverPublicKey, validSetupKey.String(), jwtToken, info, pubSSHKey)
 	if err != nil {
 		log.Errorf("failed registering peer %v,%s", err, validSetupKey.String())
--- a/client/internal/peer/conn.go
+++ b/client/internal/peer/conn.go
@@ -130,9 +130,8 @@ type Conn struct {
 	remoteModeCh chan ModeMessage
 	meta         meta
-	adapter        iface.TunAdapter
+	adapter       iface.TunAdapter
-	iFaceDiscover  stdnet.ExternalIFaceDiscover
+	iFaceDiscover stdnet.ExternalIFaceDiscover
 	sentExtraSrflx bool
 }
 // meta holds meta information about a connection
@@ -407,21 +406,14 @@ func (conn *Conn) configureConnection(remoteConn net.Conn, remoteWgPort int, rem
 	}
 	conn.status = StatusConnected
 	rosenpassEnabled := false
 	if remoteRosenpassPubKey != nil {
 		rosenpassEnabled = true
 	}
 	peerState := State{
-		PubKey:                     conn.config.Key,
+		PubKey:                 conn.config.Key,
-		ConnStatus:                 conn.status,
+		ConnStatus:             conn.status,
-		ConnStatusUpdate:           time.Now(),
+		ConnStatusUpdate:       time.Now(),
-		LocalIceCandidateType:      pair.Local.Type().String(),
+		LocalIceCandidateType:  pair.Local.Type().String(),
-		RemoteIceCandidateType:     pair.Remote.Type().String(),
+		RemoteIceCandidateType: pair.Remote.Type().String(),
-		LocalIceCandidateEndpoint:  fmt.Sprintf("%s:%d", pair.Local.Address(), pair.Local.Port()),
+		Direct:                 !isRelayCandidate(pair.Local),
 		RemoteIceCandidateEndpoint: fmt.Sprintf("%s:%d", pair.Remote.Address(), pair.Local.Port()),
 		Direct:                     !isRelayCandidate(pair.Local),
 		RosenpassEnabled:           rosenpassEnabled,
 	}
 	if pair.Local.Type() == ice.CandidateTypeRelay || pair.Remote.Type() == ice.CandidateTypeRelay {
 		peerState.Relayed = true
@@ -470,8 +462,6 @@ func (conn *Conn) cleanup() error {
 	conn.mu.Lock()
 	defer conn.mu.Unlock()
 	conn.sentExtraSrflx = false
 	var err1, err2, err3 error
 	if conn.agent != nil {
 		err1 = conn.agent.Close()
@@ -510,9 +500,6 @@ func (conn *Conn) cleanup() error {
 		// todo rethink status updates
 		log.Debugf("error while updating peer's %s state, err: %v", conn.config.Key, err)
 	}
 	if err := conn.statusRecorder.UpdateWireGuardPeerState(conn.config.Key, iface.WGStats{}); err != nil {
 		log.Debugf("failed to reset wireguard stats for peer %s: %s", conn.config.Key, err)
 	}
 	log.Debugf("cleaned up connection to peer %s", conn.config.Key)
 	if err1 != nil {
@@ -565,30 +552,6 @@ func (conn *Conn) onICECandidate(candidate ice.Candidate) {
 			if err != nil {
 				log.Errorf("failed signaling candidate to the remote peer %s %s", conn.config.Key, err)
 			}
 			// sends an extra server reflexive candidate to the remote peer with our related port (usually the wireguard port)
 			// this is useful when network has an existing port forwarding rule for the wireguard port and this peer
 			if !conn.sentExtraSrflx && candidate.Type() == ice.CandidateTypeServerReflexive && candidate.Port() != candidate.RelatedAddress().Port {
 				relatedAdd := candidate.RelatedAddress()
 				extraSrflx, err := ice.NewCandidateServerReflexive(&ice.CandidateServerReflexiveConfig{
 					Network:   candidate.NetworkType().String(),
 					Address:   candidate.Address(),
 					Port:      relatedAdd.Port,
 					Component: candidate.Component(),
 					RelAddr:   relatedAdd.Address,
 					RelPort:   relatedAdd.Port,
 				})
 				if err != nil {
 					log.Errorf("failed creating extra server reflexive candidate %s", err)
 					return
 				}
 				err = conn.signalCandidate(extraSrflx)
 				if err != nil {
 					log.Errorf("failed signaling the extra server reflexive candidate to the remote peer %s: %s", conn.config.Key, err)
 					return
 				}
 				conn.sentExtraSrflx = true
 			}
 		}()
 	}
 }
--- a/client/internal/peer/status.go
+++ b/client/internal/peer/status.go
@@ -4,32 +4,19 @@ import (
 	"errors"
 	"sync"
 	"time"
 	"google.golang.org/grpc/codes"
 	gstatus "google.golang.org/grpc/status"
 	"github.com/netbirdio/netbird/client/internal/relay"
 	"github.com/netbirdio/netbird/iface"
 )
 // State contains the latest state of a peer
 type State struct {
-	IP                         string
+	IP                     string
-	PubKey                     string
+	PubKey                 string
-	FQDN                       string
+	FQDN                   string
-	ConnStatus                 ConnStatus
+	ConnStatus             ConnStatus
-	ConnStatusUpdate           time.Time
+	ConnStatusUpdate       time.Time
-	Relayed                    bool
+	Relayed                bool
-	Direct                     bool
+	Direct                 bool
-	LocalIceCandidateType      string
+	LocalIceCandidateType  string
-	RemoteIceCandidateType     string
+	RemoteIceCandidateType string
 	LocalIceCandidateEndpoint  string
 	RemoteIceCandidateEndpoint string
 	LastWireguardHandshake     time.Time
 	BytesTx                    int64
 	BytesRx                    int64
 	RosenpassEnabled           bool
 	Routes                     map[string]struct{}
 }
 // LocalPeerState contains the latest state of the local peer
@@ -38,37 +25,18 @@ type LocalPeerState struct {
 	PubKey          string
 	KernelInterface bool
 	FQDN            string
 	Routes          map[string]struct{}
 }
 // SignalState contains the latest state of a signal connection
 type SignalState struct {
 	URL       string
 	Connected bool
 	Error     error
 }
 // ManagementState contains the latest state of a management connection
 type ManagementState struct {
 	URL       string
 	Connected bool
 	Error     error
 }
 // RosenpassState contains the latest state of the Rosenpass configuration
 type RosenpassState struct {
 	Enabled    bool
 	Permissive bool
 }
 // NSGroupState represents the status of a DNS server group, including associated domains,
 // whether it's enabled, and the last error message encountered during probing.
 type NSGroupState struct {
 	ID      string
 	Servers []string
 	Domains []string
 	Enabled bool
 	Error   error
 }
 // FullStatus contains the full state held by the Status instance
@@ -77,29 +45,20 @@ type FullStatus struct {
 	ManagementState ManagementState
 	SignalState     SignalState
 	LocalPeerState  LocalPeerState
 	RosenpassState  RosenpassState
 	Relays          []relay.ProbeResult
 	NSGroupStates   []NSGroupState
 }
-// Status holds a state of peers, signal, management connections and relays
+// Status holds a state of peers, signal and management connections
 type Status struct {
-	mux                 sync.Mutex
+	mux             sync.Mutex
-	peers               map[string]State
+	peers           map[string]State
-	changeNotify        map[string]chan struct{}
+	changeNotify    map[string]chan struct{}
-	signalState         bool
+	signalState     bool
-	signalError         error
+	managementState bool
-	managementState     bool
+	localPeer       LocalPeerState
-	managementError     error
+	offlinePeers    []State
-	relayStates         []relay.ProbeResult
+	mgmAddress      string
-	localPeer           LocalPeerState
+	signalAddress   string
-	offlinePeers        []State
+	notifier        *notifier
 	mgmAddress          string
 	signalAddress       string
 	notifier            *notifier
 	rosenpassEnabled    bool
 	rosenpassPermissive bool
 	nsGroupStates       []NSGroupState
 	// To reduce the number of notification invocation this bool will be true when need to call the notification
 	// Some Peer actions mostly used by in a batch when the network map has been synchronized. In these type of events
@@ -188,10 +147,6 @@ func (d *Status) UpdatePeerState(receivedState State) error {
 		peerState.IP = receivedState.IP
 	}
 	if receivedState.Routes != nil {
 		peerState.Routes = receivedState.Routes
 	}
 	skipNotification := shouldSkipNotify(receivedState, peerState)
 	if receivedState.ConnStatus != peerState.ConnStatus {
@@ -201,9 +156,6 @@ func (d *Status) UpdatePeerState(receivedState State) error {
 		peerState.Relayed = receivedState.Relayed
 		peerState.LocalIceCandidateType = receivedState.LocalIceCandidateType
 		peerState.RemoteIceCandidateType = receivedState.RemoteIceCandidateType
 		peerState.LocalIceCandidateEndpoint = receivedState.LocalIceCandidateEndpoint
 		peerState.RemoteIceCandidateEndpoint = receivedState.RemoteIceCandidateEndpoint
 		peerState.RosenpassEnabled = receivedState.RosenpassEnabled
 	}
 	d.peers[receivedState.PubKey] = peerState
@@ -222,25 +174,6 @@ func (d *Status) UpdatePeerState(receivedState State) error {
 	return nil
 }
 // UpdateWireGuardPeerState updates the WireGuard bits of the peer state
 func (d *Status) UpdateWireGuardPeerState(pubKey string, wgStats iface.WGStats) error {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	peerState, ok := d.peers[pubKey]
 	if !ok {
 		return errors.New("peer doesn't exist")
 	}
 	peerState.LastWireguardHandshake = wgStats.LastHandshake
 	peerState.BytesRx = wgStats.RxBytes
 	peerState.BytesTx = wgStats.TxBytes
 	d.peers[pubKey] = peerState
 	return nil
 }
 func shouldSkipNotify(received, curr State) bool {
 	switch {
 	case received.ConnStatus == StatusConnecting:
@@ -296,13 +229,6 @@ func (d *Status) GetPeerStateChangeNotifier(peer string) <-chan struct{} {
 	return ch
 }
 // GetLocalPeerState returns the local peer state
 func (d *Status) GetLocalPeerState() LocalPeerState {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	return d.localPeer
 }
 // UpdateLocalPeerState updates local peer status
 func (d *Status) UpdateLocalPeerState(localPeerState LocalPeerState) {
 	d.mux.Lock()
@@ -322,13 +248,12 @@ func (d *Status) CleanLocalPeerState() {
 }
 // MarkManagementDisconnected sets ManagementState to disconnected
-func (d *Status) MarkManagementDisconnected(err error) {
+func (d *Status) MarkManagementDisconnected() {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	defer d.onConnectionChanged()
 	d.managementState = false
 	d.managementError = err
 }
 // MarkManagementConnected sets ManagementState to connected
@@ -338,7 +263,6 @@ func (d *Status) MarkManagementConnected() {
 	defer d.onConnectionChanged()
 	d.managementState = true
 	d.managementError = nil
 }
 // UpdateSignalAddress update the address of the signal server
@@ -355,22 +279,13 @@ func (d *Status) UpdateManagementAddress(mgmAddress string) {
 	d.mgmAddress = mgmAddress
 }
 // UpdateRosenpass update the Rosenpass configuration
 func (d *Status) UpdateRosenpass(rosenpassEnabled, rosenpassPermissive bool) {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	d.rosenpassPermissive = rosenpassPermissive
 	d.rosenpassEnabled = rosenpassEnabled
 }
 // MarkSignalDisconnected sets SignalState to disconnected
-func (d *Status) MarkSignalDisconnected(err error) {
+func (d *Status) MarkSignalDisconnected() {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	defer d.onConnectionChanged()
 	d.signalState = false
 	d.signalError = err
 }
 // MarkSignalConnected sets SignalState to connected
@@ -380,68 +295,6 @@ func (d *Status) MarkSignalConnected() {
 	defer d.onConnectionChanged()
 	d.signalState = true
 	d.signalError = nil
 }
 func (d *Status) UpdateRelayStates(relayResults []relay.ProbeResult) {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	d.relayStates = relayResults
 }
 func (d *Status) UpdateDNSStates(dnsStates []NSGroupState) {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	d.nsGroupStates = dnsStates
 }
 func (d *Status) GetRosenpassState() RosenpassState {
 	return RosenpassState{
 		d.rosenpassEnabled,
 		d.rosenpassPermissive,
 	}
 }
 func (d *Status) GetManagementState() ManagementState {
 	return ManagementState{
 		d.mgmAddress,
 		d.managementState,
 		d.managementError,
 	}
 }
 // IsLoginRequired determines if a peer's login has expired.
 func (d *Status) IsLoginRequired() bool {
 	d.mux.Lock()
 	defer d.mux.Unlock()
 	// if peer is connected to the management then login is not expired
 	if d.managementState {
 		return false
 	}
 	s, ok := gstatus.FromError(d.managementError)
 	if ok && (s.Code() == codes.InvalidArgument || s.Code() == codes.PermissionDenied) {
 		return true
 	}
 	return false
 }
 func (d *Status) GetSignalState() SignalState {
 	return SignalState{
 		d.signalAddress,
 		d.signalState,
 		d.signalError,
 	}
 }
 func (d *Status) GetRelayStates() []relay.ProbeResult {
 	return d.relayStates
 }
 func (d *Status) GetDNSStates() []NSGroupState {
 	return d.nsGroupStates
 }
 // GetFullStatus gets full status
@@ -450,12 +303,15 @@ func (d *Status) GetFullStatus() FullStatus {
 	defer d.mux.Unlock()
 	fullStatus := FullStatus{
-		ManagementState: d.GetManagementState(),
+		ManagementState: ManagementState{
-		SignalState:     d.GetSignalState(),
+			d.mgmAddress,
-		LocalPeerState:  d.localPeer,
+			d.managementState,
-		Relays:          d.GetRelayStates(),
+		},
-		RosenpassState:  d.GetRosenpassState(),
+		SignalState: SignalState{
-		NSGroupStates:   d.GetDNSStates(),
+			d.signalAddress,
 			d.signalState,
 		},
 		LocalPeerState: d.localPeer,
 	}
 	for _, status := range d.peers {
--- a/client/internal/peer/status_test.go
+++ b/client/internal/peer/status_test.go
@@ -1,7 +1,6 @@
 package peer
 import (
 	"errors"
 	"testing"
 	"github.com/stretchr/testify/assert"
@@ -153,10 +152,9 @@ func TestUpdateSignalState(t *testing.T) {
 		name      string
 		connected bool
 		want      bool
 		err       error
 	}{
-		{"should mark as connected", true, true, nil},
+		{"should mark as connected", true, true},
-		{"should mark as disconnected", false, false, errors.New("test")},
+		{"should mark as disconnected", false, false},
 	}
 	status := NewRecorder("https://mgm")
@@ -167,10 +165,9 @@ func TestUpdateSignalState(t *testing.T) {
 			if test.connected {
 				status.MarkSignalConnected()
 			} else {
-				status.MarkSignalDisconnected(test.err)
+				status.MarkSignalDisconnected()
 			}
 			assert.Equal(t, test.want, status.signalState, "signal status should be equal")
 			assert.Equal(t, test.err, status.signalError)
 		})
 	}
 }
@@ -181,10 +178,9 @@ func TestUpdateManagementState(t *testing.T) {
 		name      string
 		connected bool
 		want      bool
 		err       error
 	}{
-		{"should mark as connected", true, true, nil},
+		{"should mark as connected", true, true},
-		{"should mark as disconnected", false, false, errors.New("test")},
+		{"should mark as disconnected", false, false},
 	}
 	status := NewRecorder(url)
@@ -194,10 +190,9 @@ func TestUpdateManagementState(t *testing.T) {
 			if test.connected {
 				status.MarkManagementConnected()
 			} else {
-				status.MarkManagementDisconnected(test.err)
+				status.MarkManagementDisconnected()
 			}
 			assert.Equal(t, test.want, status.managementState, "signalState status should be equal")
 			assert.Equal(t, test.err, status.managementError)
 		})
 	}
 }
--- a/client/internal/probe.go
+++ b/client/internal/probe.go
@@ -1,51 +0,0 @@
 package internal
 import "context"
 // Probe allows to run on-demand callbacks from different code locations.
 // Pass the probe to a receiving and a sending end. The receiving end starts listening
 // to requests with Receive and executes a callback when the sending end requests it
 // by calling Probe.
 type Probe struct {
 	request chan struct{}
 	result  chan bool
 	ready   bool
 }
 // NewProbe returns a new initialized probe.
 func NewProbe() *Probe {
 	return &Probe{
 		request: make(chan struct{}),
 		result:  make(chan bool),
 	}
 }
 // Probe requests the callback to be run and returns a bool indicating success.
 // It always returns true as long as the receiver is not ready.
 func (p *Probe) Probe() bool {
 	if !p.ready {
 		return true
 	}
 	p.request <- struct{}{}
 	return <-p.result
 }
 // Receive starts listening for probe requests. On such a request it runs the supplied
 // callback func which must return a bool indicating success.
 // Blocks until the passed context is cancelled.
 func (p *Probe) Receive(ctx context.Context, callback func() bool) {
 	p.ready = true
 	defer func() {
 		p.ready = false
 	}()
 	for {
 		select {
 		case <-ctx.Done():
 			return
 		case <-p.request:
 			p.result <- callback()
 		}
 	}
 }
--- a/client/internal/relay/relay.go
+++ b/client/internal/relay/relay.go
@@ -1,171 +0,0 @@
 package relay
 import (
 	"context"
 	"fmt"
 	"net"
 	"sync"
 	"time"
 	"github.com/pion/stun/v2"
 	"github.com/pion/turn/v3"
 	log "github.com/sirupsen/logrus"
 )
 // ProbeResult holds the info about the result of a relay probe request
 type ProbeResult struct {
 	URI  *stun.URI
 	Err  error
 	Addr string
 }
 // ProbeSTUN tries binding to the given STUN uri and acquiring an address
 func ProbeSTUN(ctx context.Context, uri *stun.URI) (addr string, probeErr error) {
 	defer func() {
 		if probeErr != nil {
 			log.Debugf("stun probe error from %s: %s", uri, probeErr)
 		}
 	}()
 	client, err := stun.DialURI(uri, &stun.DialConfig{})
 	if err != nil {
 		probeErr = fmt.Errorf("dial: %w", err)
 		return
 	}
 	defer func() {
 		if err := client.Close(); err != nil && probeErr == nil {
 			probeErr = fmt.Errorf("close: %w", err)
 		}
 	}()
 	done := make(chan struct{})
 	if err = client.Start(stun.MustBuild(stun.TransactionID, stun.BindingRequest), func(res stun.Event) {
 		if res.Error != nil {
 			probeErr = fmt.Errorf("request: %w", err)
 			return
 		}
 		var xorAddr stun.XORMappedAddress
 		if getErr := xorAddr.GetFrom(res.Message); getErr != nil {
 			probeErr = fmt.Errorf("get xor addr: %w", err)
 			return
 		}
 		log.Debugf("stun probe received address from %s: %s", uri, xorAddr)
 		addr = xorAddr.String()
 		done <- struct{}{}
 	}); err != nil {
 		probeErr = fmt.Errorf("client: %w", err)
 		return
 	}
 	select {
 	case <-ctx.Done():
 		probeErr = fmt.Errorf("stun request: %w", ctx.Err())
 		return
 	case <-done:
 	}
 	return addr, nil
 }
 // ProbeTURN tries allocating a session from the given TURN URI
 func ProbeTURN(ctx context.Context, uri *stun.URI) (addr string, probeErr error) {
 	defer func() {
 		if probeErr != nil {
 			log.Debugf("turn probe error from %s: %s", uri, probeErr)
 		}
 	}()
 	turnServerAddr := fmt.Sprintf("%s:%d", uri.Host, uri.Port)
 	var conn net.PacketConn
 	switch uri.Proto {
 	case stun.ProtoTypeUDP:
 		var err error
 		conn, err = net.ListenPacket("udp", "")
 		if err != nil {
 			probeErr = fmt.Errorf("listen: %w", err)
 			return
 		}
 	case stun.ProtoTypeTCP:
 		dialer := net.Dialer{}
 		tcpConn, err := dialer.DialContext(ctx, "tcp", turnServerAddr)
 		if err != nil {
 			probeErr = fmt.Errorf("dial: %w", err)
 			return
 		}
 		conn = turn.NewSTUNConn(tcpConn)
 	default:
 		probeErr = fmt.Errorf("conn: unknown proto: %s", uri.Proto)
 		return
 	}
 	defer func() {
 		if err := conn.Close(); err != nil && probeErr == nil {
 			probeErr = fmt.Errorf("conn close: %w", err)
 		}
 	}()
 	cfg := &turn.ClientConfig{
 		STUNServerAddr: turnServerAddr,
 		TURNServerAddr: turnServerAddr,
 		Conn:           conn,
 		Username:       uri.Username,
 		Password:       uri.Password,
 	}
 	client, err := turn.NewClient(cfg)
 	if err != nil {
 		probeErr = fmt.Errorf("create client: %w", err)
 		return
 	}
 	defer client.Close()
 	if err := client.Listen(); err != nil {
 		probeErr = fmt.Errorf("client listen: %w", err)
 		return
 	}
 	relayConn, err := client.Allocate()
 	if err != nil {
 		probeErr = fmt.Errorf("allocate: %w", err)
 		return
 	}
 	defer func() {
 		if err := relayConn.Close(); err != nil && probeErr == nil {
 			probeErr = fmt.Errorf("close relay conn: %w", err)
 		}
 	}()
 	log.Debugf("turn probe relay address from %s: %s", uri, relayConn.LocalAddr())
 	return relayConn.LocalAddr().String(), nil
 }
 // ProbeAll probes all given servers asynchronously and returns the results
 func ProbeAll(
 	ctx context.Context,
 	fn func(ctx context.Context, uri *stun.URI) (addr string, probeErr error),
 	relays []*stun.URI,
 ) []ProbeResult {
 	results := make([]ProbeResult, len(relays))
 	var wg sync.WaitGroup
 	for i, uri := range relays {
 		ctx, cancel := context.WithTimeout(ctx, 1*time.Second)
 		defer cancel()
 		wg.Add(1)
 		go func(res *ProbeResult, stunURI *stun.URI) {
 			defer wg.Done()
 			res.URI = stunURI
 			res.Addr, res.Err = fn(ctx, stunURI)
 		}(&results[i], uri)
 	}
 	wg.Wait()
 	return results
 }
--- a/client/internal/routemanager/client.go
+++ b/client/internal/routemanager/client.go
@@ -160,12 +160,6 @@ func (c *clientNetwork) removeRouteFromWireguardPeer(peerKey string) error {
 	if err != nil {
 		return err
 	}
 	delete(state.Routes, c.network.String())
 	if err := c.statusRecorder.UpdatePeerState(state); err != nil {
 		log.Warnf("Failed to update peer state: %v", err)
 	}
 	if state.ConnStatus != peer.StatusConnected {
 		return nil
 	}
@@ -231,20 +225,6 @@ func (c *clientNetwork) recalculateRouteAndUpdatePeerAndSystem() error {
 	}
 	c.chosenRoute = c.routes[chosen]
 	state, err := c.statusRecorder.GetPeer(c.chosenRoute.Peer)
 	if err != nil {
 		log.Errorf("Failed to get peer state: %v", err)
 	} else {
 		if state.Routes == nil {
 			state.Routes = map[string]struct{}{}
 		}
 		state.Routes[c.network.String()] = struct{}{}
 		if err := c.statusRecorder.UpdatePeerState(state); err != nil {
 			log.Warnf("Failed to update peer state: %v", err)
 		}
 	}
 	err = c.wgInterface.AddAllowedIP(c.chosenRoute.Peer, c.network.String())
 	if err != nil {
 		log.Errorf("couldn't add allowed IP %s added for peer %s, err: %v",
--- a/client/internal/routemanager/manager.go
+++ b/client/internal/routemanager/manager.go
@@ -58,7 +58,7 @@ func NewManager(ctx context.Context, pubKey string, wgInterface *iface.WGIface,
 func (m *DefaultManager) EnableServerRouter(firewall firewall.Manager) error {
 	var err error
-	m.serverRouter, err = newServerRouter(m.ctx, m.wgInterface, firewall, m.statusRecorder)
+	m.serverRouter, err = newServerRouter(m.ctx, m.wgInterface, firewall)
 	if err != nil {
 		return err
 	}
--- a/client/internal/routemanager/server_android.go
+++ b/client/internal/routemanager/server_android.go
@@ -7,10 +7,9 @@ import (
 	"fmt"
 	firewall "github.com/netbirdio/netbird/client/firewall/manager"
 	"github.com/netbirdio/netbird/client/internal/peer"
 	"github.com/netbirdio/netbird/iface"
 )
-func newServerRouter(context.Context, *iface.WGIface, firewall.Manager, *peer.Status) (serverRouter, error) {
+func newServerRouter(context.Context, *iface.WGIface, firewall.Manager) (serverRouter, error) {
 	return nil, fmt.Errorf("server route not supported on this os")
 }
--- a/client/internal/routemanager/server_nonandroid.go
+++ b/client/internal/routemanager/server_nonandroid.go
@@ -10,27 +10,24 @@ import (
 	log "github.com/sirupsen/logrus"
 	firewall "github.com/netbirdio/netbird/client/firewall/manager"
 	"github.com/netbirdio/netbird/client/internal/peer"
 	"github.com/netbirdio/netbird/iface"
 	"github.com/netbirdio/netbird/route"
 )
 type defaultServerRouter struct {
-	mux            sync.Mutex
+	mux         sync.Mutex
-	ctx            context.Context
+	ctx         context.Context
-	routes         map[string]*route.Route
+	routes      map[string]*route.Route
-	firewall       firewall.Manager
+	firewall    firewall.Manager
-	wgInterface    *iface.WGIface
+	wgInterface *iface.WGIface
 	statusRecorder *peer.Status
 }
-func newServerRouter(ctx context.Context, wgInterface *iface.WGIface, firewall firewall.Manager, statusRecorder *peer.Status) (serverRouter, error) {
+func newServerRouter(ctx context.Context, wgInterface *iface.WGIface, firewall firewall.Manager) (serverRouter, error) {
 	return &defaultServerRouter{
-		ctx:            ctx,
+		ctx:         ctx,
-		routes:         make(map[string]*route.Route),
+		routes:      make(map[string]*route.Route),
-		firewall:       firewall,
+		firewall:    firewall,
-		wgInterface:    wgInterface,
+		wgInterface: wgInterface,
 		statusRecorder: statusRecorder,
 	}, nil
 }
@@ -91,11 +88,6 @@ func (m *defaultServerRouter) removeFromServerNetwork(route *route.Route) error
 			return err
 		}
 		delete(m.routes, route.ID)
 		state := m.statusRecorder.GetLocalPeerState()
 		delete(state.Routes, route.Network.String())
 		m.statusRecorder.UpdateLocalPeerState(state)
 		return nil
 	}
 }
@@ -113,14 +105,6 @@ func (m *defaultServerRouter) addToServerNetwork(route *route.Route) error {
 			return err
 		}
 		m.routes[route.ID] = route
 		state := m.statusRecorder.GetLocalPeerState()
 		if state.Routes == nil {
 			state.Routes = map[string]struct{}{}
 		}
 		state.Routes[route.Network.String()] = struct{}{}
 		m.statusRecorder.UpdateLocalPeerState(state)
 		return nil
 	}
 }
@@ -133,10 +117,6 @@ func (m *defaultServerRouter) cleanUp() {
 		if err != nil {
 			log.Warnf("failed to remove clean up route: %s", r.ID)
 		}
 		state := m.statusRecorder.GetLocalPeerState()
 		state.Routes = nil
 		m.statusRecorder.UpdateLocalPeerState(state)
 	}
 }
--- a/client/internal/session.go
+++ b/client/internal/session.go
@@ -1,82 +0,0 @@
 package internal
 import (
 	"context"
 	"os/exec"
 	"strings"
 	"sync"
 	"time"
 	"github.com/netbirdio/netbird/client/internal/peer"
 )
 type SessionWatcher struct {
 	ctx   context.Context
 	mutex sync.Mutex
 	peerStatusRecorder *peer.Status
 	watchTicker        *time.Ticker
 	sendNotification bool
 	onExpireListener func()
 }
 // NewSessionWatcher creates a new instance of SessionWatcher.
 func NewSessionWatcher(ctx context.Context, peerStatusRecorder *peer.Status) *SessionWatcher {
 	s := &SessionWatcher{
 		ctx:                ctx,
 		peerStatusRecorder: peerStatusRecorder,
 		watchTicker:        time.NewTicker(2 * time.Second),
 	}
 	go s.startWatcher()
 	return s
 }
 // SetOnExpireListener sets the callback func to be called when the session expires.
 func (s *SessionWatcher) SetOnExpireListener(onExpire func()) {
 	s.mutex.Lock()
 	defer s.mutex.Unlock()
 	s.onExpireListener = onExpire
 }
 // startWatcher continuously checks if the session requires login and
 // calls the onExpireListener if login is required.
 func (s *SessionWatcher) startWatcher() {
 	for {
 		select {
 		case <-s.ctx.Done():
 			s.watchTicker.Stop()
 			return
 		case <-s.watchTicker.C:
 			managementState := s.peerStatusRecorder.GetManagementState()
 			if managementState.Connected {
 				s.sendNotification = true
 			}
 			isLoginRequired := s.peerStatusRecorder.IsLoginRequired()
 			if isLoginRequired && s.sendNotification && s.onExpireListener != nil {
 				s.mutex.Lock()
 				s.onExpireListener()
 				s.sendNotification = false
 				s.mutex.Unlock()
 			}
 		}
 	}
 }
 // CheckUIApp checks whether UI application is running.
 func CheckUIApp() bool {
 	cmd := exec.Command("ps", "-ef")
 	output, err := cmd.Output()
 	if err != nil {
 		return false
 	}
 	lines := strings.Split(string(output), "\n")
 	for _, line := range lines {
 		if strings.Contains(line, "netbird-ui") && !strings.Contains(line, "grep") {
 			return true
 		}
 	}
 	return false
 }
--- a/client/ios/NetBirdSDK/client.go
+++ b/client/ios/NetBirdSDK/client.go
@@ -82,7 +82,6 @@ func (c *Client) Run(fd int32, interfaceName string) error {
 		return err
 	}
 	c.recorder.UpdateManagementAddress(cfg.ManagementURL.String())
 	c.recorder.UpdateRosenpass(cfg.RosenpassEnabled, cfg.RosenpassPermissive)
 	var ctx context.Context
 	//nolint
--- a/client/proto/daemon.pb.go
+++ b/client/proto/daemon.pb.go
@@ -1,16 +1,16 @@
 // Code generated by protoc-gen-go. DO NOT EDIT.
 // versions:
 // 	protoc-gen-go v1.26.0
-// 	protoc        v3.12.4
+// 	protoc        v3.21.9
 // source: daemon.proto
 package proto
 import (
 	_ "github.com/golang/protobuf/protoc-gen-go/descriptor"
 	timestamp "github.com/golang/protobuf/ptypes/timestamp"
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
 	_ "google.golang.org/protobuf/types/descriptorpb"
 	timestamppb "google.golang.org/protobuf/types/known/timestamppb"
 	reflect "reflect"
 	sync "sync"
 )
@@ -29,10 +29,7 @@ type LoginRequest struct {
 	// setupKey wiretrustee setup key.
 	SetupKey string `protobuf:"bytes,1,opt,name=setupKey,proto3" json:"setupKey,omitempty"`
-	// This is the old PreSharedKey field which will be deprecated in favor of optionalPreSharedKey field that is defined as optional
+	// preSharedKey for wireguard setup.
 	// to allow clearing of preshared key while being able to persist in the config file.
 	//
 	// Deprecated: Do not use.
 	PreSharedKey string `protobuf:"bytes,2,opt,name=preSharedKey,proto3" json:"preSharedKey,omitempty"`
 	// managementUrl to authenticate.
 	ManagementUrl string `protobuf:"bytes,3,opt,name=managementUrl,proto3" json:"managementUrl,omitempty"`
@@ -50,10 +47,6 @@ type LoginRequest struct {
 	RosenpassEnabled     *bool   `protobuf:"varint,10,opt,name=rosenpassEnabled,proto3,oneof" json:"rosenpassEnabled,omitempty"`
 	InterfaceName        *string `protobuf:"bytes,11,opt,name=interfaceName,proto3,oneof" json:"interfaceName,omitempty"`
 	WireguardPort        *int64  `protobuf:"varint,12,opt,name=wireguardPort,proto3,oneof" json:"wireguardPort,omitempty"`
 	OptionalPreSharedKey *string `protobuf:"bytes,13,opt,name=optionalPreSharedKey,proto3,oneof" json:"optionalPreSharedKey,omitempty"`
 	DisableAutoConnect   *bool   `protobuf:"varint,14,opt,name=disableAutoConnect,proto3,oneof" json:"disableAutoConnect,omitempty"`
 	ServerSSHAllowed     *bool   `protobuf:"varint,15,opt,name=serverSSHAllowed,proto3,oneof" json:"serverSSHAllowed,omitempty"`
 	RosenpassPermissive  *bool   `protobuf:"varint,16,opt,name=rosenpassPermissive,proto3,oneof" json:"rosenpassPermissive,omitempty"`
 }
 func (x *LoginRequest) Reset() {
@@ -95,7 +88,6 @@ func (x *LoginRequest) GetSetupKey() string {
 	return ""
 }
 // Deprecated: Do not use.
 func (x *LoginRequest) GetPreSharedKey() string {
 	if x != nil {
 		return x.PreSharedKey
@@ -173,34 +165,6 @@ func (x *LoginRequest) GetWireguardPort() int64 {
 	return 0
 }
 func (x *LoginRequest) GetOptionalPreSharedKey() string {
 	if x != nil && x.OptionalPreSharedKey != nil {
 		return *x.OptionalPreSharedKey
 	}
 	return ""
 }
 func (x *LoginRequest) GetDisableAutoConnect() bool {
 	if x != nil && x.DisableAutoConnect != nil {
 		return *x.DisableAutoConnect
 	}
 	return false
 }
 func (x *LoginRequest) GetServerSSHAllowed() bool {
 	if x != nil && x.ServerSSHAllowed != nil {
 		return *x.ServerSSHAllowed
 	}
 	return false
 }
 func (x *LoginRequest) GetRosenpassPermissive() bool {
 	if x != nil && x.RosenpassPermissive != nil {
 		return *x.RosenpassPermissive
 	}
 	return false
 }
 type LoginResponse struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
@@ -757,22 +721,15 @@ type PeerState struct {
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
-	IP                         string               `protobuf:"bytes,1,opt,name=IP,proto3" json:"IP,omitempty"`
+	IP                     string                 `protobuf:"bytes,1,opt,name=IP,proto3" json:"IP,omitempty"`
-	PubKey                     string               `protobuf:"bytes,2,opt,name=pubKey,proto3" json:"pubKey,omitempty"`
+	PubKey                 string                 `protobuf:"bytes,2,opt,name=pubKey,proto3" json:"pubKey,omitempty"`
-	ConnStatus                 string               `protobuf:"bytes,3,opt,name=connStatus,proto3" json:"connStatus,omitempty"`
+	ConnStatus             string                 `protobuf:"bytes,3,opt,name=connStatus,proto3" json:"connStatus,omitempty"`
-	ConnStatusUpdate           *timestamp.Timestamp `protobuf:"bytes,4,opt,name=connStatusUpdate,proto3" json:"connStatusUpdate,omitempty"`
+	ConnStatusUpdate       *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=connStatusUpdate,proto3" json:"connStatusUpdate,omitempty"`
-	Relayed                    bool                 `protobuf:"varint,5,opt,name=relayed,proto3" json:"relayed,omitempty"`
+	Relayed                bool                   `protobuf:"varint,5,opt,name=relayed,proto3" json:"relayed,omitempty"`
-	Direct                     bool                 `protobuf:"varint,6,opt,name=direct,proto3" json:"direct,omitempty"`
+	Direct                 bool                   `protobuf:"varint,6,opt,name=direct,proto3" json:"direct,omitempty"`
-	LocalIceCandidateType      string               `protobuf:"bytes,7,opt,name=localIceCandidateType,proto3" json:"localIceCandidateType,omitempty"`
+	LocalIceCandidateType  string                 `protobuf:"bytes,7,opt,name=localIceCandidateType,proto3" json:"localIceCandidateType,omitempty"`
-	RemoteIceCandidateType     string               `protobuf:"bytes,8,opt,name=remoteIceCandidateType,proto3" json:"remoteIceCandidateType,omitempty"`
+	RemoteIceCandidateType string                 `protobuf:"bytes,8,opt,name=remoteIceCandidateType,proto3" json:"remoteIceCandidateType,omitempty"`
-	Fqdn                       string               `protobuf:"bytes,9,opt,name=fqdn,proto3" json:"fqdn,omitempty"`
+	Fqdn                   string                 `protobuf:"bytes,9,opt,name=fqdn,proto3" json:"fqdn,omitempty"`
 	LocalIceCandidateEndpoint  string               `protobuf:"bytes,10,opt,name=localIceCandidateEndpoint,proto3" json:"localIceCandidateEndpoint,omitempty"`
 	RemoteIceCandidateEndpoint string               `protobuf:"bytes,11,opt,name=remoteIceCandidateEndpoint,proto3" json:"remoteIceCandidateEndpoint,omitempty"`
 	LastWireguardHandshake     *timestamp.Timestamp `protobuf:"bytes,12,opt,name=lastWireguardHandshake,proto3" json:"lastWireguardHandshake,omitempty"`
 	BytesRx                    int64                `protobuf:"varint,13,opt,name=bytesRx,proto3" json:"bytesRx,omitempty"`
 	BytesTx                    int64                `protobuf:"varint,14,opt,name=bytesTx,proto3" json:"bytesTx,omitempty"`
 	RosenpassEnabled           bool                 `protobuf:"varint,15,opt,name=rosenpassEnabled,proto3" json:"rosenpassEnabled,omitempty"`
 	Routes                     []string             `protobuf:"bytes,16,rep,name=routes,proto3" json:"routes,omitempty"`
 }
 func (x *PeerState) Reset() {
@@ -828,7 +785,7 @@ func (x *PeerState) GetConnStatus() string {
 	return ""
 }
-func (x *PeerState) GetConnStatusUpdate() *timestamp.Timestamp {
+func (x *PeerState) GetConnStatusUpdate() *timestamppb.Timestamp {
 	if x != nil {
 		return x.ConnStatusUpdate
 	}
@@ -870,68 +827,16 @@ func (x *PeerState) GetFqdn() string {
 	return ""
 }
 func (x *PeerState) GetLocalIceCandidateEndpoint() string {
 	if x != nil {
 		return x.LocalIceCandidateEndpoint
 	}
 	return ""
 }
 func (x *PeerState) GetRemoteIceCandidateEndpoint() string {
 	if x != nil {
 		return x.RemoteIceCandidateEndpoint
 	}
 	return ""
 }
 func (x *PeerState) GetLastWireguardHandshake() *timestamp.Timestamp {
 	if x != nil {
 		return x.LastWireguardHandshake
 	}
 	return nil
 }
 func (x *PeerState) GetBytesRx() int64 {
 	if x != nil {
 		return x.BytesRx
 	}
 	return 0
 }
 func (x *PeerState) GetBytesTx() int64 {
 	if x != nil {
 		return x.BytesTx
 	}
 	return 0
 }
 func (x *PeerState) GetRosenpassEnabled() bool {
 	if x != nil {
 		return x.RosenpassEnabled
 	}
 	return false
 }
 func (x *PeerState) GetRoutes() []string {
 	if x != nil {
 		return x.Routes
 	}
 	return nil
 }
 // LocalPeerState contains the latest state of the local peer
 type LocalPeerState struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
-	IP                  string   `protobuf:"bytes,1,opt,name=IP,proto3" json:"IP,omitempty"`
+	IP              string `protobuf:"bytes,1,opt,name=IP,proto3" json:"IP,omitempty"`
-	PubKey              string   `protobuf:"bytes,2,opt,name=pubKey,proto3" json:"pubKey,omitempty"`
+	PubKey          string `protobuf:"bytes,2,opt,name=pubKey,proto3" json:"pubKey,omitempty"`
-	KernelInterface     bool     `protobuf:"varint,3,opt,name=kernelInterface,proto3" json:"kernelInterface,omitempty"`
+	KernelInterface bool   `protobuf:"varint,3,opt,name=kernelInterface,proto3" json:"kernelInterface,omitempty"`
-	Fqdn                string   `protobuf:"bytes,4,opt,name=fqdn,proto3" json:"fqdn,omitempty"`
+	Fqdn            string `protobuf:"bytes,4,opt,name=fqdn,proto3" json:"fqdn,omitempty"`
 	RosenpassEnabled    bool     `protobuf:"varint,5,opt,name=rosenpassEnabled,proto3" json:"rosenpassEnabled,omitempty"`
 	RosenpassPermissive bool     `protobuf:"varint,6,opt,name=rosenpassPermissive,proto3" json:"rosenpassPermissive,omitempty"`
 	Routes              []string `protobuf:"bytes,7,rep,name=routes,proto3" json:"routes,omitempty"`
 }
 func (x *LocalPeerState) Reset() {
@@ -994,27 +899,6 @@ func (x *LocalPeerState) GetFqdn() string {
 	return ""
 }
 func (x *LocalPeerState) GetRosenpassEnabled() bool {
 	if x != nil {
 		return x.RosenpassEnabled
 	}
 	return false
 }
 func (x *LocalPeerState) GetRosenpassPermissive() bool {
 	if x != nil {
 		return x.RosenpassPermissive
 	}
 	return false
 }
 func (x *LocalPeerState) GetRoutes() []string {
 	if x != nil {
 		return x.Routes
 	}
 	return nil
 }
 // SignalState contains the latest state of a signal connection
 type SignalState struct {
 	state         protoimpl.MessageState
@@ -1023,7 +907,6 @@ type SignalState struct {
 	URL       string `protobuf:"bytes,1,opt,name=URL,proto3" json:"URL,omitempty"`
 	Connected bool   `protobuf:"varint,2,opt,name=connected,proto3" json:"connected,omitempty"`
 	Error     string `protobuf:"bytes,3,opt,name=error,proto3" json:"error,omitempty"`
 }
 func (x *SignalState) Reset() {
@@ -1072,13 +955,6 @@ func (x *SignalState) GetConnected() bool {
 	return false
 }
 func (x *SignalState) GetError() string {
 	if x != nil {
 		return x.Error
 	}
 	return ""
 }
 // ManagementState contains the latest state of a management connection
 type ManagementState struct {
 	state         protoimpl.MessageState
@@ -1087,7 +963,6 @@ type ManagementState struct {
 	URL       string `protobuf:"bytes,1,opt,name=URL,proto3" json:"URL,omitempty"`
 	Connected bool   `protobuf:"varint,2,opt,name=connected,proto3" json:"connected,omitempty"`
 	Error     string `protobuf:"bytes,3,opt,name=error,proto3" json:"error,omitempty"`
 }
 func (x *ManagementState) Reset() {
@@ -1136,148 +1011,6 @@ func (x *ManagementState) GetConnected() bool {
 	return false
 }
 func (x *ManagementState) GetError() string {
 	if x != nil {
 		return x.Error
 	}
 	return ""
 }
 // RelayState contains the latest state of the relay
 type RelayState struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
 	URI       string `protobuf:"bytes,1,opt,name=URI,proto3" json:"URI,omitempty"`
 	Available bool   `protobuf:"varint,2,opt,name=available,proto3" json:"available,omitempty"`
 	Error     string `protobuf:"bytes,3,opt,name=error,proto3" json:"error,omitempty"`
 }
 func (x *RelayState) Reset() {
 	*x = RelayState{}
 	if protoimpl.UnsafeEnabled {
 		mi := &file_daemon_proto_msgTypes[16]
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		ms.StoreMessageInfo(mi)
 	}
 }
 func (x *RelayState) String() string {
 	return protoimpl.X.MessageStringOf(x)
 }
 func (*RelayState) ProtoMessage() {}
 func (x *RelayState) ProtoReflect() protoreflect.Message {
 	mi := &file_daemon_proto_msgTypes[16]
 	if protoimpl.UnsafeEnabled && x != nil {
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		if ms.LoadMessageInfo() == nil {
 			ms.StoreMessageInfo(mi)
 		}
 		return ms
 	}
 	return mi.MessageOf(x)
 }
 // Deprecated: Use RelayState.ProtoReflect.Descriptor instead.
 func (*RelayState) Descriptor() ([]byte, []int) {
 	return file_daemon_proto_rawDescGZIP(), []int{16}
 }
 func (x *RelayState) GetURI() string {
 	if x != nil {
 		return x.URI
 	}
 	return ""
 }
 func (x *RelayState) GetAvailable() bool {
 	if x != nil {
 		return x.Available
 	}
 	return false
 }
 func (x *RelayState) GetError() string {
 	if x != nil {
 		return x.Error
 	}
 	return ""
 }
 type NSGroupState struct {
 	state         protoimpl.MessageState
 	sizeCache     protoimpl.SizeCache
 	unknownFields protoimpl.UnknownFields
 	Servers []string `protobuf:"bytes,1,rep,name=servers,proto3" json:"servers,omitempty"`
 	Domains []string `protobuf:"bytes,2,rep,name=domains,proto3" json:"domains,omitempty"`
 	Enabled bool     `protobuf:"varint,3,opt,name=enabled,proto3" json:"enabled,omitempty"`
 	Error   string   `protobuf:"bytes,4,opt,name=error,proto3" json:"error,omitempty"`
 }
 func (x *NSGroupState) Reset() {
 	*x = NSGroupState{}
 	if protoimpl.UnsafeEnabled {
 		mi := &file_daemon_proto_msgTypes[17]
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		ms.StoreMessageInfo(mi)
 	}
 }
 func (x *NSGroupState) String() string {
 	return protoimpl.X.MessageStringOf(x)
 }
 func (*NSGroupState) ProtoMessage() {}
 func (x *NSGroupState) ProtoReflect() protoreflect.Message {
 	mi := &file_daemon_proto_msgTypes[17]
 	if protoimpl.UnsafeEnabled && x != nil {
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		if ms.LoadMessageInfo() == nil {
 			ms.StoreMessageInfo(mi)
 		}
 		return ms
 	}
 	return mi.MessageOf(x)
 }
 // Deprecated: Use NSGroupState.ProtoReflect.Descriptor instead.
 func (*NSGroupState) Descriptor() ([]byte, []int) {
 	return file_daemon_proto_rawDescGZIP(), []int{17}
 }
 func (x *NSGroupState) GetServers() []string {
 	if x != nil {
 		return x.Servers
 	}
 	return nil
 }
 func (x *NSGroupState) GetDomains() []string {
 	if x != nil {
 		return x.Domains
 	}
 	return nil
 }
 func (x *NSGroupState) GetEnabled() bool {
 	if x != nil {
 		return x.Enabled
 	}
 	return false
 }
 func (x *NSGroupState) GetError() string {
 	if x != nil {
 		return x.Error
 	}
 	return ""
 }
 // FullStatus contains the full state held by the Status instance
 type FullStatus struct {
 	state         protoimpl.MessageState
@@ -1288,14 +1021,12 @@ type FullStatus struct {
 	SignalState     *SignalState     `protobuf:"bytes,2,opt,name=signalState,proto3" json:"signalState,omitempty"`
 	LocalPeerState  *LocalPeerState  `protobuf:"bytes,3,opt,name=localPeerState,proto3" json:"localPeerState,omitempty"`
 	Peers           []*PeerState     `protobuf:"bytes,4,rep,name=peers,proto3" json:"peers,omitempty"`
 	Relays          []*RelayState    `protobuf:"bytes,5,rep,name=relays,proto3" json:"relays,omitempty"`
 	DnsServers      []*NSGroupState  `protobuf:"bytes,6,rep,name=dns_servers,json=dnsServers,proto3" json:"dns_servers,omitempty"`
 }
 func (x *FullStatus) Reset() {
 	*x = FullStatus{}
 	if protoimpl.UnsafeEnabled {
-		mi := &file_daemon_proto_msgTypes[18]
+		mi := &file_daemon_proto_msgTypes[16]
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		ms.StoreMessageInfo(mi)
 	}
@@ -1308,7 +1039,7 @@ func (x *FullStatus) String() string {
 func (*FullStatus) ProtoMessage() {}
 func (x *FullStatus) ProtoReflect() protoreflect.Message {
-	mi := &file_daemon_proto_msgTypes[18]
+	mi := &file_daemon_proto_msgTypes[16]
 	if protoimpl.UnsafeEnabled && x != nil {
 		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
 		if ms.LoadMessageInfo() == nil {
@@ -1321,7 +1052,7 @@ func (x *FullStatus) ProtoReflect() protoreflect.Message {
 // Deprecated: Use FullStatus.ProtoReflect.Descriptor instead.
 func (*FullStatus) Descriptor() ([]byte, []int) {
-	return file_daemon_proto_rawDescGZIP(), []int{18}
+	return file_daemon_proto_rawDescGZIP(), []int{16}
 }
 func (x *FullStatus) GetManagementState() *ManagementState {
@@ -1352,20 +1083,6 @@ func (x *FullStatus) GetPeers() []*PeerState {
 	return nil
 }
 func (x *FullStatus) GetRelays() []*RelayState {
 	if x != nil {
 		return x.Relays
 	}
 	return nil
 }
 func (x *FullStatus) GetDnsServers() []*NSGroupState {
 	if x != nil {
 		return x.DnsServers
 	}
 	return nil
 }
 var File_daemon_proto protoreflect.FileDescriptor
 var file_daemon_proto_rawDesc = []byte{
@@ -1374,234 +1091,165 @@ var file_daemon_proto_rawDesc = []byte{
 	0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x64, 0x65, 0x73, 0x63, 0x72, 0x69, 0x70, 0x74,
 	0x6f, 0x72, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x1a, 0x1f, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65,
 	0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2f, 0x74, 0x69, 0x6d, 0x65, 0x73, 0x74,
-	0x61, 0x6d, 0x70, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x22, 0xdd, 0x06, 0x0a, 0x0c, 0x4c, 0x6f,
+	0x61, 0x6d, 0x70, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x22, 0xa6, 0x04, 0x0a, 0x0c, 0x4c, 0x6f,
 	0x67, 0x69, 0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x12, 0x1a, 0x0a, 0x08, 0x73, 0x65,
 	0x74, 0x75, 0x70, 0x4b, 0x65, 0x79, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x73, 0x65,
-	0x74, 0x75, 0x70, 0x4b, 0x65, 0x79, 0x12, 0x26, 0x0a, 0x0c, 0x70, 0x72, 0x65, 0x53, 0x68, 0x61,
+	0x74, 0x75, 0x70, 0x4b, 0x65, 0x79, 0x12, 0x22, 0x0a, 0x0c, 0x70, 0x72, 0x65, 0x53, 0x68, 0x61,
-	0x72, 0x65, 0x64, 0x4b, 0x65, 0x79, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x42, 0x02, 0x18, 0x01,
+	0x72, 0x65, 0x64, 0x4b, 0x65, 0x79, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0c, 0x70, 0x72,
-	0x52, 0x0c, 0x70, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72, 0x65, 0x64, 0x4b, 0x65, 0x79, 0x12, 0x24,
+	0x65, 0x53, 0x68, 0x61, 0x72, 0x65, 0x64, 0x4b, 0x65, 0x79, 0x12, 0x24, 0x0a, 0x0d, 0x6d, 0x61,
-	0x0a, 0x0d, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x55, 0x72, 0x6c, 0x18,
+	0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x55, 0x72, 0x6c, 0x18, 0x03, 0x20, 0x01, 0x28,
-	0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0d, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e,
+	0x09, 0x52, 0x0d, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x55, 0x72, 0x6c,
-	0x74, 0x55, 0x72, 0x6c, 0x12, 0x1a, 0x0a, 0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c,
+	0x12, 0x1a, 0x0a, 0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c, 0x18, 0x04, 0x20, 0x01,
-	0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c,
+	0x28, 0x09, 0x52, 0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c, 0x12, 0x26, 0x0a, 0x0e,
-	0x12, 0x26, 0x0a, 0x0e, 0x6e, 0x61, 0x74, 0x45, 0x78, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x49,
+	0x6e, 0x61, 0x74, 0x45, 0x78, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x49, 0x50, 0x73, 0x18, 0x05,
-	0x50, 0x73, 0x18, 0x05, 0x20, 0x03, 0x28, 0x09, 0x52, 0x0e, 0x6e, 0x61, 0x74, 0x45, 0x78, 0x74,
+	0x20, 0x03, 0x28, 0x09, 0x52, 0x0e, 0x6e, 0x61, 0x74, 0x45, 0x78, 0x74, 0x65, 0x72, 0x6e, 0x61,
-	0x65, 0x72, 0x6e, 0x61, 0x6c, 0x49, 0x50, 0x73, 0x12, 0x30, 0x0a, 0x13, 0x63, 0x6c, 0x65, 0x61,
+	0x6c, 0x49, 0x50, 0x73, 0x12, 0x30, 0x0a, 0x13, 0x63, 0x6c, 0x65, 0x61, 0x6e, 0x4e, 0x41, 0x54,
-	0x6e, 0x4e, 0x41, 0x54, 0x45, 0x78, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x49, 0x50, 0x73, 0x18,
+	0x45, 0x78, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x49, 0x50, 0x73, 0x18, 0x06, 0x20, 0x01, 0x28,
-	0x06, 0x20, 0x01, 0x28, 0x08, 0x52, 0x13, 0x63, 0x6c, 0x65, 0x61, 0x6e, 0x4e, 0x41, 0x54, 0x45,
+	0x08, 0x52, 0x13, 0x63, 0x6c, 0x65, 0x61, 0x6e, 0x4e, 0x41, 0x54, 0x45, 0x78, 0x74, 0x65, 0x72,
-	0x78, 0x74, 0x65, 0x72, 0x6e, 0x61, 0x6c, 0x49, 0x50, 0x73, 0x12, 0x2a, 0x0a, 0x10, 0x63, 0x75,
+	0x6e, 0x61, 0x6c, 0x49, 0x50, 0x73, 0x12, 0x2a, 0x0a, 0x10, 0x63, 0x75, 0x73, 0x74, 0x6f, 0x6d,
-	0x73, 0x74, 0x6f, 0x6d, 0x44, 0x4e, 0x53, 0x41, 0x64, 0x64, 0x72, 0x65, 0x73, 0x73, 0x18, 0x07,
+	0x44, 0x4e, 0x53, 0x41, 0x64, 0x64, 0x72, 0x65, 0x73, 0x73, 0x18, 0x07, 0x20, 0x01, 0x28, 0x0c,
-	0x20, 0x01, 0x28, 0x0c, 0x52, 0x10, 0x63, 0x75, 0x73, 0x74, 0x6f, 0x6d, 0x44, 0x4e, 0x53, 0x41,
+	0x52, 0x10, 0x63, 0x75, 0x73, 0x74, 0x6f, 0x6d, 0x44, 0x4e, 0x53, 0x41, 0x64, 0x64, 0x72, 0x65,
-	0x64, 0x64, 0x72, 0x65, 0x73, 0x73, 0x12, 0x32, 0x0a, 0x14, 0x69, 0x73, 0x4c, 0x69, 0x6e, 0x75,
+	0x73, 0x73, 0x12, 0x32, 0x0a, 0x14, 0x69, 0x73, 0x4c, 0x69, 0x6e, 0x75, 0x78, 0x44, 0x65, 0x73,
-	0x78, 0x44, 0x65, 0x73, 0x6b, 0x74, 0x6f, 0x70, 0x43, 0x6c, 0x69, 0x65, 0x6e, 0x74, 0x18, 0x08,
+	0x6b, 0x74, 0x6f, 0x70, 0x43, 0x6c, 0x69, 0x65, 0x6e, 0x74, 0x18, 0x08, 0x20, 0x01, 0x28, 0x08,
-	0x20, 0x01, 0x28, 0x08, 0x52, 0x14, 0x69, 0x73, 0x4c, 0x69, 0x6e, 0x75, 0x78, 0x44, 0x65, 0x73,
+	0x52, 0x14, 0x69, 0x73, 0x4c, 0x69, 0x6e, 0x75, 0x78, 0x44, 0x65, 0x73, 0x6b, 0x74, 0x6f, 0x70,
-	0x6b, 0x74, 0x6f, 0x70, 0x43, 0x6c, 0x69, 0x65, 0x6e, 0x74, 0x12, 0x1a, 0x0a, 0x08, 0x68, 0x6f,
+	0x43, 0x6c, 0x69, 0x65, 0x6e, 0x74, 0x12, 0x1a, 0x0a, 0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61,
-	0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65, 0x18, 0x09, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x68, 0x6f,
+	0x6d, 0x65, 0x18, 0x09, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61,
-	0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65, 0x12, 0x2f, 0x0a, 0x10, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70,
+	0x6d, 0x65, 0x12, 0x2f, 0x0a, 0x10, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x45,
-	0x61, 0x73, 0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x18, 0x0a, 0x20, 0x01, 0x28, 0x08,
+	0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x18, 0x0a, 0x20, 0x01, 0x28, 0x08, 0x48, 0x00, 0x52, 0x10,
-	0x48, 0x00, 0x52, 0x10, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x45, 0x6e, 0x61,
+	0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64,
-	0x62, 0x6c, 0x65, 0x64, 0x88, 0x01, 0x01, 0x12, 0x29, 0x0a, 0x0d, 0x69, 0x6e, 0x74, 0x65, 0x72,
+	0x88, 0x01, 0x01, 0x12, 0x29, 0x0a, 0x0d, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65,
-	0x66, 0x61, 0x63, 0x65, 0x4e, 0x61, 0x6d, 0x65, 0x18, 0x0b, 0x20, 0x01, 0x28, 0x09, 0x48, 0x01,
+	0x4e, 0x61, 0x6d, 0x65, 0x18, 0x0b, 0x20, 0x01, 0x28, 0x09, 0x48, 0x01, 0x52, 0x0d, 0x69, 0x6e,
-	0x52, 0x0d, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x4e, 0x61, 0x6d, 0x65, 0x88,
+	0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x4e, 0x61, 0x6d, 0x65, 0x88, 0x01, 0x01, 0x12, 0x29,
-	0x01, 0x01, 0x12, 0x29, 0x0a, 0x0d, 0x77, 0x69, 0x72, 0x65, 0x67, 0x75, 0x61, 0x72, 0x64, 0x50,
+	0x0a, 0x0d, 0x77, 0x69, 0x72, 0x65, 0x67, 0x75, 0x61, 0x72, 0x64, 0x50, 0x6f, 0x72, 0x74, 0x18,
-	0x6f, 0x72, 0x74, 0x18, 0x0c, 0x20, 0x01, 0x28, 0x03, 0x48, 0x02, 0x52, 0x0d, 0x77, 0x69, 0x72,
+	0x0c, 0x20, 0x01, 0x28, 0x03, 0x48, 0x02, 0x52, 0x0d, 0x77, 0x69, 0x72, 0x65, 0x67, 0x75, 0x61,
-	0x65, 0x67, 0x75, 0x61, 0x72, 0x64, 0x50, 0x6f, 0x72, 0x74, 0x88, 0x01, 0x01, 0x12, 0x37, 0x0a,
+	0x72, 0x64, 0x50, 0x6f, 0x72, 0x74, 0x88, 0x01, 0x01, 0x42, 0x13, 0x0a, 0x11, 0x5f, 0x72, 0x6f,
-	0x14, 0x6f, 0x70, 0x74, 0x69, 0x6f, 0x6e, 0x61, 0x6c, 0x50, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72,
+	0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x42, 0x10,
-	0x65, 0x64, 0x4b, 0x65, 0x79, 0x18, 0x0d, 0x20, 0x01, 0x28, 0x09, 0x48, 0x03, 0x52, 0x14, 0x6f,
+	0x0a, 0x0e, 0x5f, 0x69, 0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x4e, 0x61, 0x6d, 0x65,
-	0x70, 0x74, 0x69, 0x6f, 0x6e, 0x61, 0x6c, 0x50, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72, 0x65, 0x64,
+	0x42, 0x10, 0x0a, 0x0e, 0x5f, 0x77, 0x69, 0x72, 0x65, 0x67, 0x75, 0x61, 0x72, 0x64, 0x50, 0x6f,
-	0x4b, 0x65, 0x79, 0x88, 0x01, 0x01, 0x12, 0x33, 0x0a, 0x12, 0x64, 0x69, 0x73, 0x61, 0x62, 0x6c,
+	0x72, 0x74, 0x22, 0xb5, 0x01, 0x0a, 0x0d, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70,
-	0x65, 0x41, 0x75, 0x74, 0x6f, 0x43, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74, 0x18, 0x0e, 0x20, 0x01,
+	0x6f, 0x6e, 0x73, 0x65, 0x12, 0x24, 0x0a, 0x0d, 0x6e, 0x65, 0x65, 0x64, 0x73, 0x53, 0x53, 0x4f,
-	0x28, 0x08, 0x48, 0x04, 0x52, 0x12, 0x64, 0x69, 0x73, 0x61, 0x62, 0x6c, 0x65, 0x41, 0x75, 0x74,
+	0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x18, 0x01, 0x20, 0x01, 0x28, 0x08, 0x52, 0x0d, 0x6e, 0x65, 0x65,
-	0x6f, 0x43, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74, 0x88, 0x01, 0x01, 0x12, 0x2f, 0x0a, 0x10, 0x73,
+	0x64, 0x73, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x12, 0x1a, 0x0a, 0x08, 0x75, 0x73,
-	0x65, 0x72, 0x76, 0x65, 0x72, 0x53, 0x53, 0x48, 0x41, 0x6c, 0x6c, 0x6f, 0x77, 0x65, 0x64, 0x18,
+	0x65, 0x72, 0x43, 0x6f, 0x64, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x75, 0x73,
-	0x0f, 0x20, 0x01, 0x28, 0x08, 0x48, 0x05, 0x52, 0x10, 0x73, 0x65, 0x72, 0x76, 0x65, 0x72, 0x53,
+	0x65, 0x72, 0x43, 0x6f, 0x64, 0x65, 0x12, 0x28, 0x0a, 0x0f, 0x76, 0x65, 0x72, 0x69, 0x66, 0x69,
-	0x53, 0x48, 0x41, 0x6c, 0x6c, 0x6f, 0x77, 0x65, 0x64, 0x88, 0x01, 0x01, 0x12, 0x35, 0x0a, 0x13,
+	0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x55, 0x52, 0x49, 0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52,
 	0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x50, 0x65, 0x72, 0x6d, 0x69, 0x73, 0x73,
 	0x69, 0x76, 0x65, 0x18, 0x10, 0x20, 0x01, 0x28, 0x08, 0x48, 0x06, 0x52, 0x13, 0x72, 0x6f, 0x73,
 	0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x50, 0x65, 0x72, 0x6d, 0x69, 0x73, 0x73, 0x69, 0x76, 0x65,
 	0x88, 0x01, 0x01, 0x42, 0x13, 0x0a, 0x11, 0x5f, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73,
 	0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x42, 0x10, 0x0a, 0x0e, 0x5f, 0x69, 0x6e, 0x74,
 	0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x4e, 0x61, 0x6d, 0x65, 0x42, 0x10, 0x0a, 0x0e, 0x5f, 0x77,
 	0x69, 0x72, 0x65, 0x67, 0x75, 0x61, 0x72, 0x64, 0x50, 0x6f, 0x72, 0x74, 0x42, 0x17, 0x0a, 0x15,
 	0x5f, 0x6f, 0x70, 0x74, 0x69, 0x6f, 0x6e, 0x61, 0x6c, 0x50, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72,
 	0x65, 0x64, 0x4b, 0x65, 0x79, 0x42, 0x15, 0x0a, 0x13, 0x5f, 0x64, 0x69, 0x73, 0x61, 0x62, 0x6c,
 	0x65, 0x41, 0x75, 0x74, 0x6f, 0x43, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74, 0x42, 0x13, 0x0a, 0x11,
 	0x5f, 0x73, 0x65, 0x72, 0x76, 0x65, 0x72, 0x53, 0x53, 0x48, 0x41, 0x6c, 0x6c, 0x6f, 0x77, 0x65,
 	0x64, 0x42, 0x16, 0x0a, 0x14, 0x5f, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x50,
 	0x65, 0x72, 0x6d, 0x69, 0x73, 0x73, 0x69, 0x76, 0x65, 0x22, 0xb5, 0x01, 0x0a, 0x0d, 0x4c, 0x6f,
 	0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x12, 0x24, 0x0a, 0x0d, 0x6e,
 	0x65, 0x65, 0x64, 0x73, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x18, 0x01, 0x20, 0x01,
 	0x28, 0x08, 0x52, 0x0d, 0x6e, 0x65, 0x65, 0x64, 0x73, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69,
 	0x6e, 0x12, 0x1a, 0x0a, 0x08, 0x75, 0x73, 0x65, 0x72, 0x43, 0x6f, 0x64, 0x65, 0x18, 0x02, 0x20,
 	0x01, 0x28, 0x09, 0x52, 0x08, 0x75, 0x73, 0x65, 0x72, 0x43, 0x6f, 0x64, 0x65, 0x12, 0x28, 0x0a,
 	0x0f, 0x76, 0x65, 0x72, 0x69, 0x66, 0x69, 0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x55, 0x52, 0x49,
-	0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0f, 0x76, 0x65, 0x72, 0x69, 0x66, 0x69, 0x63, 0x61,
+	0x12, 0x38, 0x0a, 0x17, 0x76, 0x65, 0x72, 0x69, 0x66, 0x69, 0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e,
-	0x74, 0x69, 0x6f, 0x6e, 0x55, 0x52, 0x49, 0x12, 0x38, 0x0a, 0x17, 0x76, 0x65, 0x72, 0x69, 0x66,
+	0x55, 0x52, 0x49, 0x43, 0x6f, 0x6d, 0x70, 0x6c, 0x65, 0x74, 0x65, 0x18, 0x04, 0x20, 0x01, 0x28,
-	0x69, 0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x55, 0x52, 0x49, 0x43, 0x6f, 0x6d, 0x70, 0x6c, 0x65,
+	0x09, 0x52, 0x17, 0x76, 0x65, 0x72, 0x69, 0x66, 0x69, 0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x55,
-	0x74, 0x65, 0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52, 0x17, 0x76, 0x65, 0x72, 0x69, 0x66, 0x69,
+	0x52, 0x49, 0x43, 0x6f, 0x6d, 0x70, 0x6c, 0x65, 0x74, 0x65, 0x22, 0x4d, 0x0a, 0x13, 0x57, 0x61,
-	0x63, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x55, 0x52, 0x49, 0x43, 0x6f, 0x6d, 0x70, 0x6c, 0x65, 0x74,
+	0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73,
-	0x65, 0x22, 0x4d, 0x0a, 0x13, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69,
+	0x74, 0x12, 0x1a, 0x0a, 0x08, 0x75, 0x73, 0x65, 0x72, 0x43, 0x6f, 0x64, 0x65, 0x18, 0x01, 0x20,
-	0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x12, 0x1a, 0x0a, 0x08, 0x75, 0x73, 0x65, 0x72,
+	0x01, 0x28, 0x09, 0x52, 0x08, 0x75, 0x73, 0x65, 0x72, 0x43, 0x6f, 0x64, 0x65, 0x12, 0x1a, 0x0a,
-	0x43, 0x6f, 0x64, 0x65, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x75, 0x73, 0x65, 0x72,
+	0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52,
-	0x43, 0x6f, 0x64, 0x65, 0x12, 0x1a, 0x0a, 0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65,
+	0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65, 0x22, 0x16, 0x0a, 0x14, 0x57, 0x61, 0x69,
-	0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x68, 0x6f, 0x73, 0x74, 0x6e, 0x61, 0x6d, 0x65,
+	0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73,
-	0x22, 0x16, 0x0a, 0x14, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e,
+	0x65, 0x22, 0x0b, 0x0a, 0x09, 0x55, 0x70, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x22, 0x0c,
-	0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x0b, 0x0a, 0x09, 0x55, 0x70, 0x52, 0x65,
+	0x0a, 0x0a, 0x55, 0x70, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x3d, 0x0a, 0x0d,
-	0x71, 0x75, 0x65, 0x73, 0x74, 0x22, 0x0c, 0x0a, 0x0a, 0x55, 0x70, 0x52, 0x65, 0x73, 0x70, 0x6f,
+	0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x12, 0x2c, 0x0a,
 	0x6e, 0x73, 0x65, 0x22, 0x3d, 0x0a, 0x0d, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x71,
 	0x75, 0x65, 0x73, 0x74, 0x12, 0x2c, 0x0a, 0x11, 0x67, 0x65, 0x74, 0x46, 0x75, 0x6c, 0x6c, 0x50,
 	0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x18, 0x01, 0x20, 0x01, 0x28, 0x08, 0x52,
 	0x11, 0x67, 0x65, 0x74, 0x46, 0x75, 0x6c, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74,
-	0x75, 0x73, 0x22, 0x82, 0x01, 0x0a, 0x0e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x73,
+	0x75, 0x73, 0x18, 0x01, 0x20, 0x01, 0x28, 0x08, 0x52, 0x11, 0x67, 0x65, 0x74, 0x46, 0x75, 0x6c,
-	0x70, 0x6f, 0x6e, 0x73, 0x65, 0x12, 0x16, 0x0a, 0x06, 0x73, 0x74, 0x61, 0x74, 0x75, 0x73, 0x18,
+	0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x22, 0x82, 0x01, 0x0a, 0x0e,
-	0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x06, 0x73, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12, 0x32, 0x0a,
+	0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x12, 0x16,
-	0x0a, 0x66, 0x75, 0x6c, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x18, 0x02, 0x20, 0x01, 0x28,
+	0x0a, 0x06, 0x73, 0x74, 0x61, 0x74, 0x75, 0x73, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x06,
-	0x0b, 0x32, 0x12, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x46, 0x75, 0x6c, 0x6c, 0x53,
+	0x73, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12, 0x32, 0x0a, 0x0a, 0x66, 0x75, 0x6c, 0x6c, 0x53, 0x74,
-	0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x0a, 0x66, 0x75, 0x6c, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x75,
+	0x61, 0x74, 0x75, 0x73, 0x18, 0x02, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x12, 0x2e, 0x64, 0x61, 0x65,
-	0x73, 0x12, 0x24, 0x0a, 0x0d, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x56, 0x65, 0x72, 0x73, 0x69,
+	0x6d, 0x6f, 0x6e, 0x2e, 0x46, 0x75, 0x6c, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x0a,
-	0x6f, 0x6e, 0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0d, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e,
+	0x66, 0x75, 0x6c, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12, 0x24, 0x0a, 0x0d, 0x64, 0x61,
-	0x56, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e, 0x22, 0x0d, 0x0a, 0x0b, 0x44, 0x6f, 0x77, 0x6e, 0x52,
+	0x65, 0x6d, 0x6f, 0x6e, 0x56, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e, 0x18, 0x03, 0x20, 0x01, 0x28,
-	0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x22, 0x0e, 0x0a, 0x0c, 0x44, 0x6f, 0x77, 0x6e, 0x52, 0x65,
+	0x09, 0x52, 0x0d, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x56, 0x65, 0x72, 0x73, 0x69, 0x6f, 0x6e,
-	0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x12, 0x0a, 0x10, 0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e,
+	0x22, 0x0d, 0x0a, 0x0b, 0x44, 0x6f, 0x77, 0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x22,
-	0x66, 0x69, 0x67, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x22, 0xb3, 0x01, 0x0a, 0x11, 0x47,
+	0x0e, 0x0a, 0x0c, 0x44, 0x6f, 0x77, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22,
-	0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65,
+	0x12, 0x0a, 0x10, 0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x52, 0x65, 0x71, 0x75,
-	0x12, 0x24, 0x0a, 0x0d, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x55, 0x72,
+	0x65, 0x73, 0x74, 0x22, 0xb3, 0x01, 0x0a, 0x11, 0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69,
-	0x6c, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0d, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d,
+	0x67, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x12, 0x24, 0x0a, 0x0d, 0x6d, 0x61, 0x6e,
-	0x65, 0x6e, 0x74, 0x55, 0x72, 0x6c, 0x12, 0x1e, 0x0a, 0x0a, 0x63, 0x6f, 0x6e, 0x66, 0x69, 0x67,
+	0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x55, 0x72, 0x6c, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09,
-	0x46, 0x69, 0x6c, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0a, 0x63, 0x6f, 0x6e, 0x66,
+	0x52, 0x0d, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x55, 0x72, 0x6c, 0x12,
-	0x69, 0x67, 0x46, 0x69, 0x6c, 0x65, 0x12, 0x18, 0x0a, 0x07, 0x6c, 0x6f, 0x67, 0x46, 0x69, 0x6c,
+	0x1e, 0x0a, 0x0a, 0x63, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x46, 0x69, 0x6c, 0x65, 0x18, 0x02, 0x20,
-	0x65, 0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x07, 0x6c, 0x6f, 0x67, 0x46, 0x69, 0x6c, 0x65,
+	0x01, 0x28, 0x09, 0x52, 0x0a, 0x63, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x46, 0x69, 0x6c, 0x65, 0x12,
-	0x12, 0x22, 0x0a, 0x0c, 0x70, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72, 0x65, 0x64, 0x4b, 0x65, 0x79,
+	0x18, 0x0a, 0x07, 0x6c, 0x6f, 0x67, 0x46, 0x69, 0x6c, 0x65, 0x18, 0x03, 0x20, 0x01, 0x28, 0x09,
-	0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0c, 0x70, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72, 0x65,
+	0x52, 0x07, 0x6c, 0x6f, 0x67, 0x46, 0x69, 0x6c, 0x65, 0x12, 0x22, 0x0a, 0x0c, 0x70, 0x72, 0x65,
-	0x64, 0x4b, 0x65, 0x79, 0x12, 0x1a, 0x0a, 0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c,
+	0x53, 0x68, 0x61, 0x72, 0x65, 0x64, 0x4b, 0x65, 0x79, 0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52,
-	0x18, 0x05, 0x20, 0x01, 0x28, 0x09, 0x52, 0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c,
+	0x0c, 0x70, 0x72, 0x65, 0x53, 0x68, 0x61, 0x72, 0x65, 0x64, 0x4b, 0x65, 0x79, 0x12, 0x1a, 0x0a,
-	0x22, 0x99, 0x05, 0x0a, 0x09, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x0e,
+	0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c, 0x18, 0x05, 0x20, 0x01, 0x28, 0x09, 0x52,
-	0x0a, 0x02, 0x49, 0x50, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x02, 0x49, 0x50, 0x12, 0x16,
+	0x08, 0x61, 0x64, 0x6d, 0x69, 0x6e, 0x55, 0x52, 0x4c, 0x22, 0xcf, 0x02, 0x0a, 0x09, 0x50, 0x65,
-	0x0a, 0x06, 0x70, 0x75, 0x62, 0x4b, 0x65, 0x79, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x06,
+	0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x0e, 0x0a, 0x02, 0x49, 0x50, 0x18, 0x01, 0x20,
-	0x70, 0x75, 0x62, 0x4b, 0x65, 0x79, 0x12, 0x1e, 0x0a, 0x0a, 0x63, 0x6f, 0x6e, 0x6e, 0x53, 0x74,
+	0x01, 0x28, 0x09, 0x52, 0x02, 0x49, 0x50, 0x12, 0x16, 0x0a, 0x06, 0x70, 0x75, 0x62, 0x4b, 0x65,
-	0x61, 0x74, 0x75, 0x73, 0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x0a, 0x63, 0x6f, 0x6e, 0x6e,
+	0x79, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x06, 0x70, 0x75, 0x62, 0x4b, 0x65, 0x79, 0x12,
-	0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12, 0x46, 0x0a, 0x10, 0x63, 0x6f, 0x6e, 0x6e, 0x53, 0x74,
+	0x1e, 0x0a, 0x0a, 0x63, 0x6f, 0x6e, 0x6e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x18, 0x03, 0x20,
-	0x61, 0x74, 0x75, 0x73, 0x55, 0x70, 0x64, 0x61, 0x74, 0x65, 0x18, 0x04, 0x20, 0x01, 0x28, 0x0b,
+	0x01, 0x28, 0x09, 0x52, 0x0a, 0x63, 0x6f, 0x6e, 0x6e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12,
-	0x32, 0x1a, 0x2e, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62,
+	0x46, 0x0a, 0x10, 0x63, 0x6f, 0x6e, 0x6e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x55, 0x70, 0x64,
-	0x75, 0x66, 0x2e, 0x54, 0x69, 0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x52, 0x10, 0x63, 0x6f,
+	0x61, 0x74, 0x65, 0x18, 0x04, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x1a, 0x2e, 0x67, 0x6f, 0x6f, 0x67,
-	0x6e, 0x6e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x55, 0x70, 0x64, 0x61, 0x74, 0x65, 0x12, 0x18,
+	0x6c, 0x65, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x75, 0x66, 0x2e, 0x54, 0x69, 0x6d, 0x65,
-	0x0a, 0x07, 0x72, 0x65, 0x6c, 0x61, 0x79, 0x65, 0x64, 0x18, 0x05, 0x20, 0x01, 0x28, 0x08, 0x52,
+	0x73, 0x74, 0x61, 0x6d, 0x70, 0x52, 0x10, 0x63, 0x6f, 0x6e, 0x6e, 0x53, 0x74, 0x61, 0x74, 0x75,
-	0x07, 0x72, 0x65, 0x6c, 0x61, 0x79, 0x65, 0x64, 0x12, 0x16, 0x0a, 0x06, 0x64, 0x69, 0x72, 0x65,
+	0x73, 0x55, 0x70, 0x64, 0x61, 0x74, 0x65, 0x12, 0x18, 0x0a, 0x07, 0x72, 0x65, 0x6c, 0x61, 0x79,
-	0x63, 0x74, 0x18, 0x06, 0x20, 0x01, 0x28, 0x08, 0x52, 0x06, 0x64, 0x69, 0x72, 0x65, 0x63, 0x74,
+	0x65, 0x64, 0x18, 0x05, 0x20, 0x01, 0x28, 0x08, 0x52, 0x07, 0x72, 0x65, 0x6c, 0x61, 0x79, 0x65,
-	0x12, 0x34, 0x0a, 0x15, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49, 0x63, 0x65, 0x43, 0x61, 0x6e, 0x64,
+	0x64, 0x12, 0x16, 0x0a, 0x06, 0x64, 0x69, 0x72, 0x65, 0x63, 0x74, 0x18, 0x06, 0x20, 0x01, 0x28,
-	0x69, 0x64, 0x61, 0x74, 0x65, 0x54, 0x79, 0x70, 0x65, 0x18, 0x07, 0x20, 0x01, 0x28, 0x09, 0x52,
+	0x08, 0x52, 0x06, 0x64, 0x69, 0x72, 0x65, 0x63, 0x74, 0x12, 0x34, 0x0a, 0x15, 0x6c, 0x6f, 0x63,
-	0x15, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49, 0x63, 0x65, 0x43, 0x61, 0x6e, 0x64, 0x69, 0x64, 0x61,
+	0x61, 0x6c, 0x49, 0x63, 0x65, 0x43, 0x61, 0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x54, 0x79,
-	0x74, 0x65, 0x54, 0x79, 0x70, 0x65, 0x12, 0x36, 0x0a, 0x16, 0x72, 0x65, 0x6d, 0x6f, 0x74, 0x65,
+	0x70, 0x65, 0x18, 0x07, 0x20, 0x01, 0x28, 0x09, 0x52, 0x15, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49,
-	0x49, 0x63, 0x65, 0x43, 0x61, 0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x54, 0x79, 0x70, 0x65,
+	0x63, 0x65, 0x43, 0x61, 0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x54, 0x79, 0x70, 0x65, 0x12,
-	0x18, 0x08, 0x20, 0x01, 0x28, 0x09, 0x52, 0x16, 0x72, 0x65, 0x6d, 0x6f, 0x74, 0x65, 0x49, 0x63,
+	0x36, 0x0a, 0x16, 0x72, 0x65, 0x6d, 0x6f, 0x74, 0x65, 0x49, 0x63, 0x65, 0x43, 0x61, 0x6e, 0x64,
-	0x65, 0x43, 0x61, 0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x54, 0x79, 0x70, 0x65, 0x12, 0x12,
+	0x69, 0x64, 0x61, 0x74, 0x65, 0x54, 0x79, 0x70, 0x65, 0x18, 0x08, 0x20, 0x01, 0x28, 0x09, 0x52,
-	0x0a, 0x04, 0x66, 0x71, 0x64, 0x6e, 0x18, 0x09, 0x20, 0x01, 0x28, 0x09, 0x52, 0x04, 0x66, 0x71,
+	0x16, 0x72, 0x65, 0x6d, 0x6f, 0x74, 0x65, 0x49, 0x63, 0x65, 0x43, 0x61, 0x6e, 0x64, 0x69, 0x64,
-	0x64, 0x6e, 0x12, 0x3c, 0x0a, 0x19, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49, 0x63, 0x65, 0x43, 0x61,
+	0x61, 0x74, 0x65, 0x54, 0x79, 0x70, 0x65, 0x12, 0x12, 0x0a, 0x04, 0x66, 0x71, 0x64, 0x6e, 0x18,
-	0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x45, 0x6e, 0x64, 0x70, 0x6f, 0x69, 0x6e, 0x74, 0x18,
+	0x09, 0x20, 0x01, 0x28, 0x09, 0x52, 0x04, 0x66, 0x71, 0x64, 0x6e, 0x22, 0x76, 0x0a, 0x0e, 0x4c,
-	0x0a, 0x20, 0x01, 0x28, 0x09, 0x52, 0x19, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x49, 0x63, 0x65, 0x43,
+	0x6f, 0x63, 0x61, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x0e, 0x0a,
-	0x61, 0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x45, 0x6e, 0x64, 0x70, 0x6f, 0x69, 0x6e, 0x74,
+	0x02, 0x49, 0x50, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x02, 0x49, 0x50, 0x12, 0x16, 0x0a,
-	0x12, 0x3e, 0x0a, 0x1a, 0x72, 0x65, 0x6d, 0x6f, 0x74, 0x65, 0x49, 0x63, 0x65, 0x43, 0x61, 0x6e,
+	0x06, 0x70, 0x75, 0x62, 0x4b, 0x65, 0x79, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52, 0x06, 0x70,
-	0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x45, 0x6e, 0x64, 0x70, 0x6f, 0x69, 0x6e, 0x74, 0x18, 0x0b,
+	0x75, 0x62, 0x4b, 0x65, 0x79, 0x12, 0x28, 0x0a, 0x0f, 0x6b, 0x65, 0x72, 0x6e, 0x65, 0x6c, 0x49,
-	0x20, 0x01, 0x28, 0x09, 0x52, 0x1a, 0x72, 0x65, 0x6d, 0x6f, 0x74, 0x65, 0x49, 0x63, 0x65, 0x43,
+	0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x18, 0x03, 0x20, 0x01, 0x28, 0x08, 0x52, 0x0f,
-	0x61, 0x6e, 0x64, 0x69, 0x64, 0x61, 0x74, 0x65, 0x45, 0x6e, 0x64, 0x70, 0x6f, 0x69, 0x6e, 0x74,
+	0x6b, 0x65, 0x72, 0x6e, 0x65, 0x6c, 0x49, 0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x12,
-	0x12, 0x52, 0x0a, 0x16, 0x6c, 0x61, 0x73, 0x74, 0x57, 0x69, 0x72, 0x65, 0x67, 0x75, 0x61, 0x72,
+	0x12, 0x0a, 0x04, 0x66, 0x71, 0x64, 0x6e, 0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52, 0x04, 0x66,
-	0x64, 0x48, 0x61, 0x6e, 0x64, 0x73, 0x68, 0x61, 0x6b, 0x65, 0x18, 0x0c, 0x20, 0x01, 0x28, 0x0b,
+	0x71, 0x64, 0x6e, 0x22, 0x3d, 0x0a, 0x0b, 0x53, 0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61,
-	0x32, 0x1a, 0x2e, 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65, 0x2e, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62,
+	0x74, 0x65, 0x12, 0x10, 0x0a, 0x03, 0x55, 0x52, 0x4c, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52,
-	0x75, 0x66, 0x2e, 0x54, 0x69, 0x6d, 0x65, 0x73, 0x74, 0x61, 0x6d, 0x70, 0x52, 0x16, 0x6c, 0x61,
+	0x03, 0x55, 0x52, 0x4c, 0x12, 0x1c, 0x0a, 0x09, 0x63, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74, 0x65,
-	0x73, 0x74, 0x57, 0x69, 0x72, 0x65, 0x67, 0x75, 0x61, 0x72, 0x64, 0x48, 0x61, 0x6e, 0x64, 0x73,
+	0x64, 0x18, 0x02, 0x20, 0x01, 0x28, 0x08, 0x52, 0x09, 0x63, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74,
-	0x68, 0x61, 0x6b, 0x65, 0x12, 0x18, 0x0a, 0x07, 0x62, 0x79, 0x74, 0x65, 0x73, 0x52, 0x78, 0x18,
+	0x65, 0x64, 0x22, 0x41, 0x0a, 0x0f, 0x4d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74,
-	0x0d, 0x20, 0x01, 0x28, 0x03, 0x52, 0x07, 0x62, 0x79, 0x74, 0x65, 0x73, 0x52, 0x78, 0x12, 0x18,
+	0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x10, 0x0a, 0x03, 0x55, 0x52, 0x4c, 0x18, 0x01, 0x20, 0x01,
-	0x0a, 0x07, 0x62, 0x79, 0x74, 0x65, 0x73, 0x54, 0x78, 0x18, 0x0e, 0x20, 0x01, 0x28, 0x03, 0x52,
+	0x28, 0x09, 0x52, 0x03, 0x55, 0x52, 0x4c, 0x12, 0x1c, 0x0a, 0x09, 0x63, 0x6f, 0x6e, 0x6e, 0x65,
-	0x07, 0x62, 0x79, 0x74, 0x65, 0x73, 0x54, 0x78, 0x12, 0x2a, 0x0a, 0x10, 0x72, 0x6f, 0x73, 0x65,
+	0x63, 0x74, 0x65, 0x64, 0x18, 0x02, 0x20, 0x01, 0x28, 0x08, 0x52, 0x09, 0x63, 0x6f, 0x6e, 0x6e,
-	0x6e, 0x70, 0x61, 0x73, 0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x18, 0x0f, 0x20, 0x01,
+	0x65, 0x63, 0x74, 0x65, 0x64, 0x22, 0xef, 0x01, 0x0a, 0x0a, 0x46, 0x75, 0x6c, 0x6c, 0x53, 0x74,
-	0x28, 0x08, 0x52, 0x10, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x45, 0x6e, 0x61,
+	0x61, 0x74, 0x75, 0x73, 0x12, 0x41, 0x0a, 0x0f, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65,
-	0x62, 0x6c, 0x65, 0x64, 0x12, 0x16, 0x0a, 0x06, 0x72, 0x6f, 0x75, 0x74, 0x65, 0x73, 0x18, 0x10,
+	0x6e, 0x74, 0x53, 0x74, 0x61, 0x74, 0x65, 0x18, 0x01, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x17, 0x2e,
-	0x20, 0x03, 0x28, 0x09, 0x52, 0x06, 0x72, 0x6f, 0x75, 0x74, 0x65, 0x73, 0x22, 0xec, 0x01, 0x0a,
+	0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x4d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e,
-	0x0e, 0x4c, 0x6f, 0x63, 0x61, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12,
+	0x74, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x0f, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65,
-	0x0e, 0x0a, 0x02, 0x49, 0x50, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x02, 0x49, 0x50, 0x12,
+	0x6e, 0x74, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x35, 0x0a, 0x0b, 0x73, 0x69, 0x67, 0x6e, 0x61,
-	0x16, 0x0a, 0x06, 0x70, 0x75, 0x62, 0x4b, 0x65, 0x79, 0x18, 0x02, 0x20, 0x01, 0x28, 0x09, 0x52,
+	0x6c, 0x53, 0x74, 0x61, 0x74, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x13, 0x2e, 0x64,
-	0x06, 0x70, 0x75, 0x62, 0x4b, 0x65, 0x79, 0x12, 0x28, 0x0a, 0x0f, 0x6b, 0x65, 0x72, 0x6e, 0x65,
+	0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x53, 0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61, 0x74,
-	0x6c, 0x49, 0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63, 0x65, 0x18, 0x03, 0x20, 0x01, 0x28, 0x08,
+	0x65, 0x52, 0x0b, 0x73, 0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x3e,
-	0x52, 0x0f, 0x6b, 0x65, 0x72, 0x6e, 0x65, 0x6c, 0x49, 0x6e, 0x74, 0x65, 0x72, 0x66, 0x61, 0x63,
+	0x0a, 0x0e, 0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65,
-	0x65, 0x12, 0x12, 0x0a, 0x04, 0x66, 0x71, 0x64, 0x6e, 0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52,
+	0x18, 0x03, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x16, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e,
-	0x04, 0x66, 0x71, 0x64, 0x6e, 0x12, 0x2a, 0x0a, 0x10, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61,
+	0x4c, 0x6f, 0x63, 0x61, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x0e,
-	0x73, 0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x18, 0x05, 0x20, 0x01, 0x28, 0x08, 0x52,
+	0x6c, 0x6f, 0x63, 0x61, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x27,
-	0x10, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x45, 0x6e, 0x61, 0x62, 0x6c, 0x65,
+	0x0a, 0x05, 0x70, 0x65, 0x65, 0x72, 0x73, 0x18, 0x04, 0x20, 0x03, 0x28, 0x0b, 0x32, 0x11, 0x2e,
-	0x64, 0x12, 0x30, 0x0a, 0x13, 0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x50, 0x65,
+	0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65,
-	0x72, 0x6d, 0x69, 0x73, 0x73, 0x69, 0x76, 0x65, 0x18, 0x06, 0x20, 0x01, 0x28, 0x08, 0x52, 0x13,
+	0x52, 0x05, 0x70, 0x65, 0x65, 0x72, 0x73, 0x32, 0xf7, 0x02, 0x0a, 0x0d, 0x44, 0x61, 0x65, 0x6d,
-	0x72, 0x6f, 0x73, 0x65, 0x6e, 0x70, 0x61, 0x73, 0x73, 0x50, 0x65, 0x72, 0x6d, 0x69, 0x73, 0x73,
+	0x6f, 0x6e, 0x53, 0x65, 0x72, 0x76, 0x69, 0x63, 0x65, 0x12, 0x36, 0x0a, 0x05, 0x4c, 0x6f, 0x67,
-	0x69, 0x76, 0x65, 0x12, 0x16, 0x0a, 0x06, 0x72, 0x6f, 0x75, 0x74, 0x65, 0x73, 0x18, 0x07, 0x20,
+	0x69, 0x6e, 0x12, 0x14, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x4c, 0x6f, 0x67, 0x69,
-	0x03, 0x28, 0x09, 0x52, 0x06, 0x72, 0x6f, 0x75, 0x74, 0x65, 0x73, 0x22, 0x53, 0x0a, 0x0b, 0x53,
+	0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x15, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f,
-	0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x10, 0x0a, 0x03, 0x55, 0x52,
+	0x6e, 0x2e, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22,
-	0x4c, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09, 0x52, 0x03, 0x55, 0x52, 0x4c, 0x12, 0x1c, 0x0a, 0x09,
+	0x00, 0x12, 0x4b, 0x0a, 0x0c, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69,
-	0x63, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74, 0x65, 0x64, 0x18, 0x02, 0x20, 0x01, 0x28, 0x08, 0x52,
+	0x6e, 0x12, 0x1b, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x57, 0x61, 0x69, 0x74, 0x53,
-	0x09, 0x63, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74, 0x65, 0x64, 0x12, 0x14, 0x0a, 0x05, 0x65, 0x72,
+	0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x1c,
-	0x72, 0x6f, 0x72, 0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x05, 0x65, 0x72, 0x72, 0x6f, 0x72,
+	0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c,
-	0x22, 0x57, 0x0a, 0x0f, 0x4d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x53, 0x74,
+	0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x2d,
-	0x61, 0x74, 0x65, 0x12, 0x10, 0x0a, 0x03, 0x55, 0x52, 0x4c, 0x18, 0x01, 0x20, 0x01, 0x28, 0x09,
+	0x0a, 0x02, 0x55, 0x70, 0x12, 0x11, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x55, 0x70,
-	0x52, 0x03, 0x55, 0x52, 0x4c, 0x12, 0x1c, 0x0a, 0x09, 0x63, 0x6f, 0x6e, 0x6e, 0x65, 0x63, 0x74,
+	0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x12, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e,
-	0x65, 0x64, 0x18, 0x02, 0x20, 0x01, 0x28, 0x08, 0x52, 0x09, 0x63, 0x6f, 0x6e, 0x6e, 0x65, 0x63,
+	0x2e, 0x55, 0x70, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x39, 0x0a,
-	0x74, 0x65, 0x64, 0x12, 0x14, 0x0a, 0x05, 0x65, 0x72, 0x72, 0x6f, 0x72, 0x18, 0x03, 0x20, 0x01,
+	0x06, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12, 0x15, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e,
-	0x28, 0x09, 0x52, 0x05, 0x65, 0x72, 0x72, 0x6f, 0x72, 0x22, 0x52, 0x0a, 0x0a, 0x52, 0x65, 0x6c,
+	0x2e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x16,
-	0x61, 0x79, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x10, 0x0a, 0x03, 0x55, 0x52, 0x49, 0x18, 0x01,
+	0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65,
-	0x20, 0x01, 0x28, 0x09, 0x52, 0x03, 0x55, 0x52, 0x49, 0x12, 0x1c, 0x0a, 0x09, 0x61, 0x76, 0x61,
+	0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x33, 0x0a, 0x04, 0x44, 0x6f, 0x77, 0x6e,
-	0x69, 0x6c, 0x61, 0x62, 0x6c, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x08, 0x52, 0x09, 0x61, 0x76,
+	0x12, 0x13, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x44, 0x6f, 0x77, 0x6e, 0x52, 0x65,
-	0x61, 0x69, 0x6c, 0x61, 0x62, 0x6c, 0x65, 0x12, 0x14, 0x0a, 0x05, 0x65, 0x72, 0x72, 0x6f, 0x72,
+	0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x14, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x44,
-	0x18, 0x03, 0x20, 0x01, 0x28, 0x09, 0x52, 0x05, 0x65, 0x72, 0x72, 0x6f, 0x72, 0x22, 0x72, 0x0a,
+	0x6f, 0x77, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x42, 0x0a,
-	0x0c, 0x4e, 0x53, 0x47, 0x72, 0x6f, 0x75, 0x70, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x18, 0x0a,
+	0x09, 0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x12, 0x18, 0x2e, 0x64, 0x61, 0x65,
-	0x07, 0x73, 0x65, 0x72, 0x76, 0x65, 0x72, 0x73, 0x18, 0x01, 0x20, 0x03, 0x28, 0x09, 0x52, 0x07,
+	0x6d, 0x6f, 0x6e, 0x2e, 0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x52, 0x65, 0x71,
-	0x73, 0x65, 0x72, 0x76, 0x65, 0x72, 0x73, 0x12, 0x18, 0x0a, 0x07, 0x64, 0x6f, 0x6d, 0x61, 0x69,
+	0x75, 0x65, 0x73, 0x74, 0x1a, 0x19, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x47, 0x65,
-	0x6e, 0x73, 0x18, 0x02, 0x20, 0x03, 0x28, 0x09, 0x52, 0x07, 0x64, 0x6f, 0x6d, 0x61, 0x69, 0x6e,
+	0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22,
-	0x73, 0x12, 0x18, 0x0a, 0x07, 0x65, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x18, 0x03, 0x20, 0x01,
+	0x00, 0x42, 0x08, 0x5a, 0x06, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x06, 0x70, 0x72, 0x6f,
-	0x28, 0x08, 0x52, 0x07, 0x65, 0x6e, 0x61, 0x62, 0x6c, 0x65, 0x64, 0x12, 0x14, 0x0a, 0x05, 0x65,
+	0x74, 0x6f, 0x33,
 	0x72, 0x72, 0x6f, 0x72, 0x18, 0x04, 0x20, 0x01, 0x28, 0x09, 0x52, 0x05, 0x65, 0x72, 0x72, 0x6f,
 	0x72, 0x22, 0xd2, 0x02, 0x0a, 0x0a, 0x46, 0x75, 0x6c, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73,
 	0x12, 0x41, 0x0a, 0x0f, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x53, 0x74,
 	0x61, 0x74, 0x65, 0x18, 0x01, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x17, 0x2e, 0x64, 0x61, 0x65, 0x6d,
 	0x6f, 0x6e, 0x2e, 0x4d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x53, 0x74, 0x61,
 	0x74, 0x65, 0x52, 0x0f, 0x6d, 0x61, 0x6e, 0x61, 0x67, 0x65, 0x6d, 0x65, 0x6e, 0x74, 0x53, 0x74,
 	0x61, 0x74, 0x65, 0x12, 0x35, 0x0a, 0x0b, 0x73, 0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61,
 	0x74, 0x65, 0x18, 0x02, 0x20, 0x01, 0x28, 0x0b, 0x32, 0x13, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f,
 	0x6e, 0x2e, 0x53, 0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x0b, 0x73,
 	0x69, 0x67, 0x6e, 0x61, 0x6c, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x3e, 0x0a, 0x0e, 0x6c, 0x6f,
 	0x63, 0x61, 0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x18, 0x03, 0x20, 0x01,
 	0x28, 0x0b, 0x32, 0x16, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x4c, 0x6f, 0x63, 0x61,
 	0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x0e, 0x6c, 0x6f, 0x63, 0x61,
 	0x6c, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x12, 0x27, 0x0a, 0x05, 0x70, 0x65,
 	0x65, 0x72, 0x73, 0x18, 0x04, 0x20, 0x03, 0x28, 0x0b, 0x32, 0x11, 0x2e, 0x64, 0x61, 0x65, 0x6d,
 	0x6f, 0x6e, 0x2e, 0x50, 0x65, 0x65, 0x72, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x05, 0x70, 0x65,
 	0x65, 0x72, 0x73, 0x12, 0x2a, 0x0a, 0x06, 0x72, 0x65, 0x6c, 0x61, 0x79, 0x73, 0x18, 0x05, 0x20,
 	0x03, 0x28, 0x0b, 0x32, 0x12, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x52, 0x65, 0x6c,
 	0x61, 0x79, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x06, 0x72, 0x65, 0x6c, 0x61, 0x79, 0x73, 0x12,
 	0x35, 0x0a, 0x0b, 0x64, 0x6e, 0x73, 0x5f, 0x73, 0x65, 0x72, 0x76, 0x65, 0x72, 0x73, 0x18, 0x06,
 	0x20, 0x03, 0x28, 0x0b, 0x32, 0x14, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x4e, 0x53,
 	0x47, 0x72, 0x6f, 0x75, 0x70, 0x53, 0x74, 0x61, 0x74, 0x65, 0x52, 0x0a, 0x64, 0x6e, 0x73, 0x53,
 	0x65, 0x72, 0x76, 0x65, 0x72, 0x73, 0x32, 0xf7, 0x02, 0x0a, 0x0d, 0x44, 0x61, 0x65, 0x6d, 0x6f,
 	0x6e, 0x53, 0x65, 0x72, 0x76, 0x69, 0x63, 0x65, 0x12, 0x36, 0x0a, 0x05, 0x4c, 0x6f, 0x67, 0x69,
 	0x6e, 0x12, 0x14, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x4c, 0x6f, 0x67, 0x69, 0x6e,
 	0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x15, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e,
 	0x2e, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00,
 	0x12, 0x4b, 0x0a, 0x0c, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e,
 	0x12, 0x1b, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53,
 	0x4f, 0x4c, 0x6f, 0x67, 0x69, 0x6e, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x1c, 0x2e,
 	0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x57, 0x61, 0x69, 0x74, 0x53, 0x53, 0x4f, 0x4c, 0x6f,
 	0x67, 0x69, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x2d, 0x0a,
 	0x02, 0x55, 0x70, 0x12, 0x11, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x55, 0x70, 0x52,
 	0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x12, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e,
 	0x55, 0x70, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x39, 0x0a, 0x06,
 	0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x12, 0x15, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e,
 	0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x71, 0x75, 0x65, 0x73, 0x74, 0x1a, 0x16, 0x2e,
 	0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x53, 0x74, 0x61, 0x74, 0x75, 0x73, 0x52, 0x65, 0x73,
 	0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x33, 0x0a, 0x04, 0x44, 0x6f, 0x77, 0x6e, 0x12,
 	0x13, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x44, 0x6f, 0x77, 0x6e, 0x52, 0x65, 0x71,
 	0x75, 0x65, 0x73, 0x74, 0x1a, 0x14, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x44, 0x6f,
 	0x77, 0x6e, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00, 0x12, 0x42, 0x0a, 0x09,
 	0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x12, 0x18, 0x2e, 0x64, 0x61, 0x65, 0x6d,
 	0x6f, 0x6e, 0x2e, 0x47, 0x65, 0x74, 0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x52, 0x65, 0x71, 0x75,
 	0x65, 0x73, 0x74, 0x1a, 0x19, 0x2e, 0x64, 0x61, 0x65, 0x6d, 0x6f, 0x6e, 0x2e, 0x47, 0x65, 0x74,
 	0x43, 0x6f, 0x6e, 0x66, 0x69, 0x67, 0x52, 0x65, 0x73, 0x70, 0x6f, 0x6e, 0x73, 0x65, 0x22, 0x00,
 	0x42, 0x08, 0x5a, 0x06, 0x2f, 0x70, 0x72, 0x6f, 0x74, 0x6f, 0x62, 0x06, 0x70, 0x72, 0x6f, 0x74,
 	0x6f, 0x33,
 }
 var (
@@ -1616,56 +1264,51 @@ func file_daemon_proto_rawDescGZIP() []byte {
 	return file_daemon_proto_rawDescData
 }
-var file_daemon_proto_msgTypes = make([]protoimpl.MessageInfo, 19)
+var file_daemon_proto_msgTypes = make([]protoimpl.MessageInfo, 17)
 var file_daemon_proto_goTypes = []interface{}{
-	(*LoginRequest)(nil),         // 0: daemon.LoginRequest
+	(*LoginRequest)(nil),          // 0: daemon.LoginRequest
-	(*LoginResponse)(nil),        // 1: daemon.LoginResponse
+	(*LoginResponse)(nil),         // 1: daemon.LoginResponse
-	(*WaitSSOLoginRequest)(nil),  // 2: daemon.WaitSSOLoginRequest
+	(*WaitSSOLoginRequest)(nil),   // 2: daemon.WaitSSOLoginRequest
-	(*WaitSSOLoginResponse)(nil), // 3: daemon.WaitSSOLoginResponse
+	(*WaitSSOLoginResponse)(nil),  // 3: daemon.WaitSSOLoginResponse
-	(*UpRequest)(nil),            // 4: daemon.UpRequest
+	(*UpRequest)(nil),             // 4: daemon.UpRequest
-	(*UpResponse)(nil),           // 5: daemon.UpResponse
+	(*UpResponse)(nil),            // 5: daemon.UpResponse
-	(*StatusRequest)(nil),        // 6: daemon.StatusRequest
+	(*StatusRequest)(nil),         // 6: daemon.StatusRequest
-	(*StatusResponse)(nil),       // 7: daemon.StatusResponse
+	(*StatusResponse)(nil),        // 7: daemon.StatusResponse
-	(*DownRequest)(nil),          // 8: daemon.DownRequest
+	(*DownRequest)(nil),           // 8: daemon.DownRequest
-	(*DownResponse)(nil),         // 9: daemon.DownResponse
+	(*DownResponse)(nil),          // 9: daemon.DownResponse
-	(*GetConfigRequest)(nil),     // 10: daemon.GetConfigRequest
+	(*GetConfigRequest)(nil),      // 10: daemon.GetConfigRequest
-	(*GetConfigResponse)(nil),    // 11: daemon.GetConfigResponse
+	(*GetConfigResponse)(nil),     // 11: daemon.GetConfigResponse
-	(*PeerState)(nil),            // 12: daemon.PeerState
+	(*PeerState)(nil),             // 12: daemon.PeerState
-	(*LocalPeerState)(nil),       // 13: daemon.LocalPeerState
+	(*LocalPeerState)(nil),        // 13: daemon.LocalPeerState
-	(*SignalState)(nil),          // 14: daemon.SignalState
+	(*SignalState)(nil),           // 14: daemon.SignalState
-	(*ManagementState)(nil),      // 15: daemon.ManagementState
+	(*ManagementState)(nil),       // 15: daemon.ManagementState
-	(*RelayState)(nil),           // 16: daemon.RelayState
+	(*FullStatus)(nil),            // 16: daemon.FullStatus
-	(*NSGroupState)(nil),         // 17: daemon.NSGroupState
+	(*timestamppb.Timestamp)(nil), // 17: google.protobuf.Timestamp
 	(*FullStatus)(nil),           // 18: daemon.FullStatus
 	(*timestamp.Timestamp)(nil),  // 19: google.protobuf.Timestamp
 }
 var file_daemon_proto_depIdxs = []int32{
-	18, // 0: daemon.StatusResponse.fullStatus:type_name -> daemon.FullStatus
+	16, // 0: daemon.StatusResponse.fullStatus:type_name -> daemon.FullStatus
-	19, // 1: daemon.PeerState.connStatusUpdate:type_name -> google.protobuf.Timestamp
+	17, // 1: daemon.PeerState.connStatusUpdate:type_name -> google.protobuf.Timestamp
-	19, // 2: daemon.PeerState.lastWireguardHandshake:type_name -> google.protobuf.Timestamp
+	15, // 2: daemon.FullStatus.managementState:type_name -> daemon.ManagementState
-	15, // 3: daemon.FullStatus.managementState:type_name -> daemon.ManagementState
+	14, // 3: daemon.FullStatus.signalState:type_name -> daemon.SignalState
-	14, // 4: daemon.FullStatus.signalState:type_name -> daemon.SignalState
+	13, // 4: daemon.FullStatus.localPeerState:type_name -> daemon.LocalPeerState
-	13, // 5: daemon.FullStatus.localPeerState:type_name -> daemon.LocalPeerState
+	12, // 5: daemon.FullStatus.peers:type_name -> daemon.PeerState
-	12, // 6: daemon.FullStatus.peers:type_name -> daemon.PeerState
+	0,  // 6: daemon.DaemonService.Login:input_type -> daemon.LoginRequest
-	16, // 7: daemon.FullStatus.relays:type_name -> daemon.RelayState
+	2,  // 7: daemon.DaemonService.WaitSSOLogin:input_type -> daemon.WaitSSOLoginRequest
-	17, // 8: daemon.FullStatus.dns_servers:type_name -> daemon.NSGroupState
+	4,  // 8: daemon.DaemonService.Up:input_type -> daemon.UpRequest
-	0,  // 9: daemon.DaemonService.Login:input_type -> daemon.LoginRequest
+	6,  // 9: daemon.DaemonService.Status:input_type -> daemon.StatusRequest
-	2,  // 10: daemon.DaemonService.WaitSSOLogin:input_type -> daemon.WaitSSOLoginRequest
+	8,  // 10: daemon.DaemonService.Down:input_type -> daemon.DownRequest
-	4,  // 11: daemon.DaemonService.Up:input_type -> daemon.UpRequest
+	10, // 11: daemon.DaemonService.GetConfig:input_type -> daemon.GetConfigRequest
-	6,  // 12: daemon.DaemonService.Status:input_type -> daemon.StatusRequest
+	1,  // 12: daemon.DaemonService.Login:output_type -> daemon.LoginResponse
-	8,  // 13: daemon.DaemonService.Down:input_type -> daemon.DownRequest
+	3,  // 13: daemon.DaemonService.WaitSSOLogin:output_type -> daemon.WaitSSOLoginResponse
-	10, // 14: daemon.DaemonService.GetConfig:input_type -> daemon.GetConfigRequest
+	5,  // 14: daemon.DaemonService.Up:output_type -> daemon.UpResponse
-	1,  // 15: daemon.DaemonService.Login:output_type -> daemon.LoginResponse
+	7,  // 15: daemon.DaemonService.Status:output_type -> daemon.StatusResponse
-	3,  // 16: daemon.DaemonService.WaitSSOLogin:output_type -> daemon.WaitSSOLoginResponse
+	9,  // 16: daemon.DaemonService.Down:output_type -> daemon.DownResponse
-	5,  // 17: daemon.DaemonService.Up:output_type -> daemon.UpResponse
+	11, // 17: daemon.DaemonService.GetConfig:output_type -> daemon.GetConfigResponse
-	7,  // 18: daemon.DaemonService.Status:output_type -> daemon.StatusResponse
+	12, // [12:18] is the sub-list for method output_type
-	9,  // 19: daemon.DaemonService.Down:output_type -> daemon.DownResponse
+	6,  // [6:12] is the sub-list for method input_type
-	11, // 20: daemon.DaemonService.GetConfig:output_type -> daemon.GetConfigResponse
+	6,  // [6:6] is the sub-list for extension type_name
-	15, // [15:21] is the sub-list for method output_type
+	6,  // [6:6] is the sub-list for extension extendee
-	9,  // [9:15] is the sub-list for method input_type
+	0,  // [0:6] is the sub-list for field type_name
 	9,  // [9:9] is the sub-list for extension type_name
 	9,  // [9:9] is the sub-list for extension extendee
 	0,  // [0:9] is the sub-list for field type_name
 }
 func init() { file_daemon_proto_init() }
@@ -1867,30 +1510,6 @@ func file_daemon_proto_init() {
 			}
 		}
 		file_daemon_proto_msgTypes[16].Exporter = func(v interface{}, i int) interface{} {
 			switch v := v.(*RelayState); i {
 			case 0:
 				return &v.state
 			case 1:
 				return &v.sizeCache
 			case 2:
 				return &v.unknownFields
 			default:
 				return nil
 			}
 		}
 		file_daemon_proto_msgTypes[17].Exporter = func(v interface{}, i int) interface{} {
 			switch v := v.(*NSGroupState); i {
 			case 0:
 				return &v.state
 			case 1:
 				return &v.sizeCache
 			case 2:
 				return &v.unknownFields
 			default:
 				return nil
 			}
 		}
 		file_daemon_proto_msgTypes[18].Exporter = func(v interface{}, i int) interface{} {
 			switch v := v.(*FullStatus); i {
 			case 0:
 				return &v.state
@@ -1910,7 +1529,7 @@ func file_daemon_proto_init() {
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: file_daemon_proto_rawDesc,
 			NumEnums:      0,
-			NumMessages:   19,
+			NumMessages:   17,
 			NumExtensions: 0,
 			NumServices:   1,
 		},
--- a/client/proto/daemon.proto
+++ b/client/proto/daemon.proto
@@ -32,9 +32,8 @@ message LoginRequest {
  // setupKey wiretrustee setup key.
  string setupKey = 1;
-  // This is the old PreSharedKey field which will be deprecated in favor of optionalPreSharedKey field that is defined as optional
+  // preSharedKey for wireguard setup.
-  // to allow clearing of preshared key while being able to persist in the config file.
+  string preSharedKey = 2;
  string preSharedKey = 2 [deprecated = true];
  // managementUrl to authenticate.
  string managementUrl = 3;
@@ -62,13 +61,6 @@ message LoginRequest {
  optional int64 wireguardPort = 12;
  optional string optionalPreSharedKey = 13;
  optional bool disableAutoConnect = 14;
  optional bool serverSSHAllowed = 15;
  optional bool rosenpassPermissive = 16;
 }
 message LoginResponse {
@@ -133,62 +125,33 @@ message PeerState {
  bool relayed = 5;
  bool direct = 6;
  string localIceCandidateType = 7;
-  string remoteIceCandidateType = 8;
+  string remoteIceCandidateType =8;
  string fqdn = 9;
  string localIceCandidateEndpoint = 10;
  string remoteIceCandidateEndpoint = 11;
  google.protobuf.Timestamp lastWireguardHandshake = 12;
  int64 bytesRx = 13;
  int64 bytesTx = 14;
  bool rosenpassEnabled = 15;
  repeated string routes = 16;
 }
 // LocalPeerState contains the latest state of the local peer
 message LocalPeerState {
  string IP = 1;
  string pubKey = 2;
-  bool  kernelInterface = 3;
+  bool  kernelInterface =3;
  string fqdn = 4;
  bool rosenpassEnabled = 5;
  bool rosenpassPermissive = 6;
  repeated string routes = 7;
 }
 // SignalState contains the latest state of a signal connection
 message SignalState {
  string URL = 1;
  bool connected = 2;
  string error = 3;
 }
 // ManagementState contains the latest state of a management connection
 message ManagementState {
  string URL = 1;
  bool connected = 2;
  string error = 3;
 }
 // RelayState contains the latest state of the relay
 message RelayState {
  string URI = 1;
  bool available = 2;
  string error = 3;
 }
 message NSGroupState {
  repeated string servers = 1;
  repeated string domains = 2;
  bool enabled = 3;
  string error = 4;
 }
 // FullStatus contains the full state held by the Status instance
 message FullStatus {
-  ManagementState managementState = 1;
+    ManagementState managementState = 1;
-  SignalState     signalState = 2;
+    SignalState     signalState = 2;
-  LocalPeerState  localPeerState = 3;
+    LocalPeerState  localPeerState = 3;
-  repeated PeerState peers = 4;
+    repeated PeerState peers = 4;
  repeated RelayState relays = 5;
  repeated NSGroupState dns_servers = 6;
 }
--- a/client/proto/generate.sh
+++ b/client/proto/generate.sh
@@ -13,5 +13,5 @@ script_path=$(dirname $(realpath "$0"))
 cd "$script_path"
 go install google.golang.org/protobuf/cmd/protoc-gen-go@v1.26
 go install google.golang.org/grpc/cmd/protoc-gen-go-grpc@v1.1
-protoc -I ./ ./daemon.proto --go_out=../ --go-grpc_out=../ --experimental_allow_proto3_optional
+protoc -I ./ ./daemon.proto --go_out=../ --go-grpc_out=../
 cd "$old_pwd"
--- a/client/server/server.go
+++ b/client/server/server.go
@@ -3,16 +3,9 @@ package server
 import (
 	"context"
 	"fmt"
 	"os"
 	"os/exec"
 	"runtime"
 	"strconv"
 	"sync"
 	"time"
 	"github.com/cenkalti/backoff/v4"
 	"golang.org/x/exp/maps"
 	"github.com/netbirdio/netbird/client/internal/auth"
 	"github.com/netbirdio/netbird/client/system"
@@ -28,18 +21,6 @@ import (
 	"github.com/netbirdio/netbird/version"
 )
 const (
 	probeThreshold          = time.Second * 5
 	retryInitialIntervalVar = "NB_CONN_RETRY_INTERVAL_TIME"
 	maxRetryIntervalVar     = "NB_CONN_MAX_RETRY_INTERVAL_TIME"
 	maxRetryTimeVar         = "NB_CONN_MAX_RETRY_TIME_TIME"
 	retryMultiplierVar      = "NB_CONN_RETRY_MULTIPLIER"
 	defaultInitialRetryTime = 14 * 24 * time.Hour
 	defaultMaxRetryInterval = 60 * time.Minute
 	defaultMaxRetryTime     = 14 * 24 * time.Hour
 	defaultRetryMultiplier  = 1.7
 )
 // Server for service control.
 type Server struct {
 	rootCtx   context.Context
@@ -56,13 +37,6 @@ type Server struct {
 	proto.UnimplementedDaemonServiceServer
 	statusRecorder *peer.Status
 	sessionWatcher *internal.SessionWatcher
 	mgmProbe    *internal.Probe
 	signalProbe *internal.Probe
 	relayProbe  *internal.Probe
 	wgProbe     *internal.Probe
 	lastProbe   time.Time
 }
 type oauthAuthFlow struct {
@@ -79,11 +53,7 @@ func New(ctx context.Context, configPath, logFile string) *Server {
 		latestConfigInput: internal.ConfigInput{
 			ConfigPath: configPath,
 		},
-		logFile:     logFile,
+		logFile: logFile,
 		mgmProbe:    internal.NewProbe(),
 		signalProbe: internal.NewProbe(),
 		relayProbe:  internal.NewProbe(),
 		wgProbe:     internal.NewProbe(),
 	}
 }
@@ -130,118 +100,17 @@ func (s *Server) Start() error {
 	if s.statusRecorder == nil {
 		s.statusRecorder = peer.NewRecorder(config.ManagementURL.String())
 	} else {
 		s.statusRecorder.UpdateManagementAddress(config.ManagementURL.String())
 	}
 	s.statusRecorder.UpdateManagementAddress(config.ManagementURL.String())
 	s.statusRecorder.UpdateRosenpass(config.RosenpassEnabled, config.RosenpassPermissive)
 	if s.sessionWatcher == nil {
 		s.sessionWatcher = internal.NewSessionWatcher(s.rootCtx, s.statusRecorder)
 		s.sessionWatcher.SetOnExpireListener(s.onSessionExpire)
 	}
 	if !config.DisableAutoConnect {
 		go s.connectWithRetryRuns(ctx, config, s.statusRecorder, s.mgmProbe, s.signalProbe, s.relayProbe, s.wgProbe)
 	}
 	return nil
 }
 // connectWithRetryRuns runs the client connection with a backoff strategy where we retry the operation as additional
 // mechanism to keep the client connected even when the connection is lost.
 // we cancel retry if the client receive a stop or down command, or if disable auto connect is configured.
 func (s *Server) connectWithRetryRuns(ctx context.Context, config *internal.Config, statusRecorder *peer.Status,
 	mgmProbe *internal.Probe, signalProbe *internal.Probe, relayProbe *internal.Probe, wgProbe *internal.Probe) {
 	backOff := getConnectWithBackoff(ctx)
 	retryStarted := false
 	go func() {
-		t := time.NewTicker(24 * time.Hour)
+		if err := internal.RunClient(ctx, config, s.statusRecorder); err != nil {
-		for {
+			log.Errorf("init connections: %v", err)
 			select {
 			case <-ctx.Done():
 				t.Stop()
 				return
 			case <-t.C:
 				if retryStarted {
 					mgmtState := statusRecorder.GetManagementState()
 					signalState := statusRecorder.GetSignalState()
 					if mgmtState.Connected && signalState.Connected {
 						log.Tracef("resetting status")
 						retryStarted = false
 					} else {
 						log.Tracef("not resetting status: mgmt: %v, signal: %v", mgmtState.Connected, signalState.Connected)
 					}
 				}
 			}
 		}
 	}()
-	runOperation := func() error {
+	return nil
 		log.Tracef("running client connection")
 		err := internal.RunClientWithProbes(ctx, config, statusRecorder, mgmProbe, signalProbe, relayProbe, wgProbe)
 		if err != nil {
 			log.Debugf("run client connection exited with error: %v. Will retry in the background", err)
 		}
 		if config.DisableAutoConnect {
 			return backoff.Permanent(err)
 		}
 		if !retryStarted {
 			retryStarted = true
 			backOff.Reset()
 		}
 		log.Tracef("client connection exited")
 		return fmt.Errorf("client connection exited")
 	}
 	err := backoff.Retry(runOperation, backOff)
 	if s, ok := gstatus.FromError(err); ok && s.Code() != codes.Canceled {
 		log.Errorf("received an error when trying to connect: %v", err)
 	} else {
 		log.Tracef("retry canceled")
 	}
 }
 // getConnectWithBackoff returns a backoff with exponential backoff strategy for connection retries
 func getConnectWithBackoff(ctx context.Context) backoff.BackOff {
 	initialInterval := parseEnvDuration(retryInitialIntervalVar, defaultInitialRetryTime)
 	maxInterval := parseEnvDuration(maxRetryIntervalVar, defaultMaxRetryInterval)
 	maxElapsedTime := parseEnvDuration(maxRetryTimeVar, defaultMaxRetryTime)
 	multiplier := defaultRetryMultiplier
 	if envValue := os.Getenv(retryMultiplierVar); envValue != "" {
 		// parse the multiplier from the environment variable string value to float64
 		value, err := strconv.ParseFloat(envValue, 64)
 		if err != nil {
 			log.Warnf("unable to parse environment variable %s: %s. using default: %f", retryMultiplierVar, envValue, multiplier)
 		} else {
 			multiplier = value
 		}
 	}
 	return backoff.WithContext(&backoff.ExponentialBackOff{
 		InitialInterval:     initialInterval,
 		RandomizationFactor: 1,
 		Multiplier:          multiplier,
 		MaxInterval:         maxInterval,
 		MaxElapsedTime:      maxElapsedTime, // 14 days
 		Stop:                backoff.Stop,
 		Clock:               backoff.SystemClock,
 	}, ctx)
 }
 // parseEnvDuration parses the environment variable and returns the duration
 func parseEnvDuration(envVar string, defaultDuration time.Duration) time.Duration {
 	if envValue := os.Getenv(envVar); envValue != "" {
 		if duration, err := time.ParseDuration(envValue); err == nil {
 			return duration
 		}
 		log.Warnf("unable to parse environment variable %s: %s. using default: %s", envVar, envValue, defaultDuration)
 	}
 	return defaultDuration
 }
 // loginAttempt attempts to login using the provided information. it returns a status in case something fails
@@ -323,21 +192,6 @@ func (s *Server) Login(callerCtx context.Context, msg *proto.LoginRequest) (*pro
 		s.latestConfigInput.RosenpassEnabled = msg.RosenpassEnabled
 	}
 	if msg.RosenpassPermissive != nil {
 		inputConfig.RosenpassPermissive = msg.RosenpassPermissive
 		s.latestConfigInput.RosenpassPermissive = msg.RosenpassPermissive
 	}
 	if msg.ServerSSHAllowed != nil {
 		inputConfig.ServerSSHAllowed = msg.ServerSSHAllowed
 		s.latestConfigInput.ServerSSHAllowed = msg.ServerSSHAllowed
 	}
 	if msg.DisableAutoConnect != nil {
 		inputConfig.DisableAutoConnect = msg.DisableAutoConnect
 		s.latestConfigInput.DisableAutoConnect = msg.DisableAutoConnect
 	}
 	if msg.InterfaceName != nil {
 		inputConfig.InterfaceName = msg.InterfaceName
 		s.latestConfigInput.InterfaceName = msg.InterfaceName
@@ -351,9 +205,7 @@ func (s *Server) Login(callerCtx context.Context, msg *proto.LoginRequest) (*pro
 	s.mutex.Unlock()
-	if msg.OptionalPreSharedKey != nil {
+	inputConfig.PreSharedKey = &msg.PreSharedKey
 		inputConfig.PreSharedKey = msg.OptionalPreSharedKey
 	}
 	config, err := internal.UpdateOrCreateConfig(inputConfig)
 	if err != nil {
@@ -550,11 +402,16 @@ func (s *Server) Up(callerCtx context.Context, _ *proto.UpRequest) (*proto.UpRes
 	if s.statusRecorder == nil {
 		s.statusRecorder = peer.NewRecorder(s.config.ManagementURL.String())
 	} else {
 		s.statusRecorder.UpdateManagementAddress(s.config.ManagementURL.String())
 	}
 	s.statusRecorder.UpdateManagementAddress(s.config.ManagementURL.String())
 	s.statusRecorder.UpdateRosenpass(s.config.RosenpassEnabled, s.config.RosenpassPermissive)
-	go s.connectWithRetryRuns(ctx, s.config, s.statusRecorder, s.mgmProbe, s.signalProbe, s.relayProbe, s.wgProbe)
+	go func() {
 		if err := internal.RunClient(ctx, s.config, s.statusRecorder); err != nil {
 			log.Errorf("run client connection: %v", err)
 			return
 		}
 	}()
 	return &proto.UpResponse{}, nil
 }
@@ -574,7 +431,7 @@ func (s *Server) Down(_ context.Context, _ *proto.DownRequest) (*proto.DownRespo
 	return &proto.DownResponse{}, nil
 }
-// Status returns the daemon status
+// Status starts engine work in the daemon.
 func (s *Server) Status(
 	_ context.Context,
 	msg *proto.StatusRequest,
@@ -591,13 +448,11 @@ func (s *Server) Status(
 	if s.statusRecorder == nil {
 		s.statusRecorder = peer.NewRecorder(s.config.ManagementURL.String())
 	} else {
 		s.statusRecorder.UpdateManagementAddress(s.config.ManagementURL.String())
 	}
 	s.statusRecorder.UpdateManagementAddress(s.config.ManagementURL.String())
 	s.statusRecorder.UpdateRosenpass(s.config.RosenpassEnabled, s.config.RosenpassPermissive)
 	if msg.GetFullPeerStatus {
 		s.runProbes()
 		fullStatus := s.statusRecorder.GetFullStatus()
 		pbFullStatus := toProtoFullStatus(fullStatus)
 		statusResponse.FullStatus = pbFullStatus
@@ -606,20 +461,6 @@ func (s *Server) Status(
 	return &statusResponse, nil
 }
 func (s *Server) runProbes() {
 	if time.Since(s.lastProbe) > probeThreshold {
 		managementHealthy := s.mgmProbe.Probe()
 		signalHealthy := s.signalProbe.Probe()
 		relayHealthy := s.relayProbe.Probe()
 		wgProbe := s.wgProbe.Probe()
 		// Update last time only if all probes were successful
 		if managementHealthy && signalHealthy && relayHealthy && wgProbe {
 			s.lastProbe = time.Now()
 		}
 	}
 }
 // GetConfig of the daemon.
 func (s *Server) GetConfig(_ context.Context, _ *proto.GetConfigRequest) (*proto.GetConfigResponse, error) {
 	s.mutex.Lock()
@@ -654,17 +495,6 @@ func (s *Server) GetConfig(_ context.Context, _ *proto.GetConfigRequest) (*proto
 	}, nil
 }
 func (s *Server) onSessionExpire() {
 	if runtime.GOOS != "windows" {
 		isUIActive := internal.CheckUIApp()
 		if !isUIActive {
 			if err := sendTerminalNotification(); err != nil {
 				log.Errorf("send session expire terminal notification: %v", err)
 			}
 		}
 	}
 }
 func toProtoFullStatus(fullStatus peer.FullStatus) *proto.FullStatus {
 	pbFullStatus := proto.FullStatus{
 		ManagementState: &proto.ManagementState{},
@@ -675,98 +505,28 @@ func toProtoFullStatus(fullStatus peer.FullStatus) *proto.FullStatus {
 	pbFullStatus.ManagementState.URL = fullStatus.ManagementState.URL
 	pbFullStatus.ManagementState.Connected = fullStatus.ManagementState.Connected
 	if err := fullStatus.ManagementState.Error; err != nil {
 		pbFullStatus.ManagementState.Error = err.Error()
 	}
 	pbFullStatus.SignalState.URL = fullStatus.SignalState.URL
 	pbFullStatus.SignalState.Connected = fullStatus.SignalState.Connected
 	if err := fullStatus.SignalState.Error; err != nil {
 		pbFullStatus.SignalState.Error = err.Error()
 	}
 	pbFullStatus.LocalPeerState.IP = fullStatus.LocalPeerState.IP
 	pbFullStatus.LocalPeerState.PubKey = fullStatus.LocalPeerState.PubKey
 	pbFullStatus.LocalPeerState.KernelInterface = fullStatus.LocalPeerState.KernelInterface
 	pbFullStatus.LocalPeerState.Fqdn = fullStatus.LocalPeerState.FQDN
 	pbFullStatus.LocalPeerState.RosenpassPermissive = fullStatus.RosenpassState.Permissive
 	pbFullStatus.LocalPeerState.RosenpassEnabled = fullStatus.RosenpassState.Enabled
 	pbFullStatus.LocalPeerState.Routes = maps.Keys(fullStatus.LocalPeerState.Routes)
 	for _, peerState := range fullStatus.Peers {
 		pbPeerState := &proto.PeerState{
-			IP:                         peerState.IP,
+			IP:                     peerState.IP,
-			PubKey:                     peerState.PubKey,
+			PubKey:                 peerState.PubKey,
-			ConnStatus:                 peerState.ConnStatus.String(),
+			ConnStatus:             peerState.ConnStatus.String(),
-			ConnStatusUpdate:           timestamppb.New(peerState.ConnStatusUpdate),
+			ConnStatusUpdate:       timestamppb.New(peerState.ConnStatusUpdate),
-			Relayed:                    peerState.Relayed,
+			Relayed:                peerState.Relayed,
-			Direct:                     peerState.Direct,
+			Direct:                 peerState.Direct,
-			LocalIceCandidateType:      peerState.LocalIceCandidateType,
+			LocalIceCandidateType:  peerState.LocalIceCandidateType,
-			RemoteIceCandidateType:     peerState.RemoteIceCandidateType,
+			RemoteIceCandidateType: peerState.RemoteIceCandidateType,
-			LocalIceCandidateEndpoint:  peerState.LocalIceCandidateEndpoint,
+			Fqdn:                   peerState.FQDN,
 			RemoteIceCandidateEndpoint: peerState.RemoteIceCandidateEndpoint,
 			Fqdn:                       peerState.FQDN,
 			LastWireguardHandshake:     timestamppb.New(peerState.LastWireguardHandshake),
 			BytesRx:                    peerState.BytesRx,
 			BytesTx:                    peerState.BytesTx,
 			RosenpassEnabled:           peerState.RosenpassEnabled,
 			Routes:                     maps.Keys(peerState.Routes),
 		}
 		pbFullStatus.Peers = append(pbFullStatus.Peers, pbPeerState)
 	}
 	for _, relayState := range fullStatus.Relays {
 		pbRelayState := &proto.RelayState{
 			URI:       relayState.URI.String(),
 			Available: relayState.Err == nil,
 		}
 		if err := relayState.Err; err != nil {
 			pbRelayState.Error = err.Error()
 		}
 		pbFullStatus.Relays = append(pbFullStatus.Relays, pbRelayState)
 	}
 	for _, dnsState := range fullStatus.NSGroupStates {
 		var err string
 		if dnsState.Error != nil {
 			err = dnsState.Error.Error()
 		}
 		pbDnsState := &proto.NSGroupState{
 			Servers: dnsState.Servers,
 			Domains: dnsState.Domains,
 			Enabled: dnsState.Enabled,
 			Error:   err,
 		}
 		pbFullStatus.DnsServers = append(pbFullStatus.DnsServers, pbDnsState)
 	}
 	return &pbFullStatus
 }
 // sendTerminalNotification sends a terminal notification message
 // to inform the user that the NetBird connection session has expired.
 func sendTerminalNotification() error {
 	message := "NetBird connection session expired\n\nPlease re-authenticate to connect to the network."
 	echoCmd := exec.Command("echo", message)
 	wallCmd := exec.Command("sudo", "wall")
 	echoCmdStdout, err := echoCmd.StdoutPipe()
 	if err != nil {
 		return err
 	}
 	wallCmd.Stdin = echoCmdStdout
 	if err := echoCmd.Start(); err != nil {
 		return err
 	}
 	if err := wallCmd.Start(); err != nil {
 		return err
 	}
 	if err := echoCmd.Wait(); err != nil {
 		return err
 	}
 	return wallCmd.Wait()
 }
--- a/client/server/server_test.go
+++ b/client/server/server_test.go
@@ -1,157 +0,0 @@
 package server
 import (
 	"context"
 	"net"
 	"testing"
 	"time"
 	log "github.com/sirupsen/logrus"
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/keepalive"
 	"github.com/netbirdio/netbird/client/internal"
 	"github.com/netbirdio/netbird/client/internal/peer"
 	mgmtProto "github.com/netbirdio/netbird/management/proto"
 	"github.com/netbirdio/netbird/management/server"
 	"github.com/netbirdio/netbird/management/server/activity"
 	"github.com/netbirdio/netbird/signal/proto"
 	signalServer "github.com/netbirdio/netbird/signal/server"
 )
 var (
 	kaep = keepalive.EnforcementPolicy{
 		MinTime:             15 * time.Second,
 		PermitWithoutStream: true,
 	}
 	kasp = keepalive.ServerParameters{
 		MaxConnectionIdle:     15 * time.Second,
 		MaxConnectionAgeGrace: 5 * time.Second,
 		Time:                  5 * time.Second,
 		Timeout:               2 * time.Second,
 	}
 )
 // TestConnectWithRetryRuns checks that the connectWithRetry function runs and runs the retries according to the times specified via environment variables
 // we will use a management server started via to simulate the server and capture the number of retries
 func TestConnectWithRetryRuns(t *testing.T) {
 	// start the signal server
 	_, signalAddr, err := startSignal()
 	if err != nil {
 		t.Fatalf("failed to start signal server: %v", err)
 	}
 	counter := 0
 	// start the management server
 	_, mgmtAddr, err := startManagement(t, signalAddr, &counter)
 	if err != nil {
 		t.Fatalf("failed to start management server: %v", err)
 	}
 	ctx := internal.CtxInitState(context.Background())
 	ctx, cancel := context.WithDeadline(ctx, time.Now().Add(30*time.Second))
 	defer cancel()
 	// create new server
 	s := New(ctx, t.TempDir()+"/config.json", "debug")
 	s.latestConfigInput.ManagementURL = "http://" + mgmtAddr
 	config, err := internal.UpdateOrCreateConfig(s.latestConfigInput)
 	if err != nil {
 		t.Fatalf("failed to create config: %v", err)
 	}
 	s.config = config
 	s.statusRecorder = peer.NewRecorder(config.ManagementURL.String())
 	t.Setenv(retryInitialIntervalVar, "1s")
 	t.Setenv(maxRetryIntervalVar, "2s")
 	t.Setenv(maxRetryTimeVar, "5s")
 	t.Setenv(retryMultiplierVar, "1")
 	s.connectWithRetryRuns(ctx, config, s.statusRecorder, s.mgmProbe, s.signalProbe, s.relayProbe, s.wgProbe)
 	if counter < 3 {
 		t.Fatalf("expected counter > 2, got %d", counter)
 	}
 }
 type mockServer struct {
 	mgmtProto.ManagementServiceServer
 	counter *int
 }
 func (m *mockServer) Login(ctx context.Context, req *mgmtProto.EncryptedMessage) (*mgmtProto.EncryptedMessage, error) {
 	*m.counter++
 	return m.ManagementServiceServer.Login(ctx, req)
 }
 func startManagement(t *testing.T, signalAddr string, counter *int) (*grpc.Server, string, error) {
 	t.Helper()
 	dataDir := t.TempDir()
 	config := &server.Config{
 		Stuns:      []*server.Host{},
 		TURNConfig: &server.TURNConfig{},
 		Signal: &server.Host{
 			Proto: "http",
 			URI:   signalAddr,
 		},
 		Datadir:    dataDir,
 		HttpConfig: nil,
 	}
 	lis, err := net.Listen("tcp", "localhost:0")
 	if err != nil {
 		return nil, "", err
 	}
 	s := grpc.NewServer(grpc.KeepaliveEnforcementPolicy(kaep), grpc.KeepaliveParams(kasp))
 	store, err := server.NewStoreFromJson(config.Datadir, nil)
 	if err != nil {
 		return nil, "", err
 	}
 	peersUpdateManager := server.NewPeersUpdateManager(nil)
 	eventStore := &activity.InMemoryEventStore{}
 	if err != nil {
 		return nil, "", err
 	}
 	accountManager, err := server.BuildManager(store, peersUpdateManager, nil, "", "", eventStore, nil, false)
 	if err != nil {
 		return nil, "", err
 	}
 	turnManager := server.NewTimeBasedAuthSecretsManager(peersUpdateManager, config.TURNConfig)
 	mgmtServer, err := server.NewServer(config, accountManager, peersUpdateManager, turnManager, nil, nil)
 	if err != nil {
 		return nil, "", err
 	}
 	mock := &mockServer{
 		ManagementServiceServer: mgmtServer,
 		counter:                 counter,
 	}
 	mgmtProto.RegisterManagementServiceServer(s, mock)
 	go func() {
 		if err = s.Serve(lis); err != nil {
 			log.Fatalf("failed to serve: %v", err)
 		}
 	}()
 	return s, lis.Addr().String(), nil
 }
 func startSignal() (*grpc.Server, string, error) {
 	s := grpc.NewServer(grpc.KeepaliveEnforcementPolicy(kaep), grpc.KeepaliveParams(kasp))
 	lis, err := net.Listen("tcp", "localhost:0")
 	if err != nil {
 		log.Fatalf("failed to listen: %v", err)
 	}
 	proto.RegisterSignalExchangeServer(s, signalServer.NewServer())
 	go func() {
 		if err = s.Serve(lis); err != nil {
 			log.Fatalf("failed to serve: %v", err)
 		}
 	}()
 	return s, lis.Addr().String(), nil
 }
--- a/client/system/detect_cloud/alibabacloud.go
+++ b/client/system/detect_cloud/alibabacloud.go
@@ -1,24 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectAlibabaCloud(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://100.100.100.200/latest/", nil)
 	if err != nil {
 		return ""
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		return "Alibaba Cloud"
 	}
 	return ""
 }
--- a/client/system/detect_cloud/aws.go
+++ b/client/system/detect_cloud/aws.go
@@ -1,57 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectAWS(ctx context.Context) string {
 	v1ResultChan := make(chan bool, 1)
 	v2ResultChan := make(chan bool, 1)
 	go func() {
 		v1ResultChan <- detectAWSIDMSv1(ctx)
 	}()
 	go func() {
 		v2ResultChan <- detectAWSIDMSv2(ctx)
 	}()
 	v1Result, v2Result := <-v1ResultChan, <-v2ResultChan
 	if v1Result || v2Result {
 		return "Amazon Web Services"
 	}
 	return ""
 }
 func detectAWSIDMSv1(ctx context.Context) bool {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/latest/", nil)
 	if err != nil {
 		return false
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return false
 	}
 	defer resp.Body.Close()
 	return resp.StatusCode == http.StatusOK
 }
 func detectAWSIDMSv2(ctx context.Context) bool {
 	req, err := http.NewRequestWithContext(ctx, "PUT", "http://169.254.169.254/latest/api/token", nil)
 	if err != nil {
 		return false
 	}
 	req.Header.Set("X-aws-ec2-metadata-token-ttl-seconds", "21600")
 	resp, err := hc.Do(req)
 	if err != nil {
 		return false
 	}
 	defer resp.Body.Close()
 	return resp.StatusCode == http.StatusOK
 }
--- a/client/system/detect_cloud/azure.go
+++ b/client/system/detect_cloud/azure.go
@@ -1,25 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectAzure(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/metadata/instance?api-version=2021-02-01", nil)
 	if err != nil {
 		return ""
 	}
 	req.Header.Set("Metadata", "true")
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		return "Microsoft Azure"
 	}
 	return ""
 }
--- a/client/system/detect_cloud/detect.go
+++ b/client/system/detect_cloud/detect.go
@@ -1,65 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 	"sync"
 	"time"
 )
 /*
 	This packages is inspired by the work of the original author (https://github.com/perlogix), but it has been modified to fit the needs of the project.
 	Original project: https://github.com/perlogix/libdetectcloud
 */
 var hc = &http.Client{Timeout: 300 * time.Millisecond}
 func Detect(ctx context.Context) string {
 	subCtx, cancel := context.WithCancel(context.Background())
 	defer cancel()
 	funcs := []func(context.Context) string{
 		detectAlibabaCloud,
 		detectAWS,
 		detectAzure,
 		detectDigitalOcean,
 		detectGCP,
 		detectOracle,
 		detectIBMCloud,
 		detectSoftlayer,
 		detectVultr,
 	}
 	results := make(chan string, len(funcs))
 	var wg sync.WaitGroup
 	for _, fn := range funcs {
 		wg.Add(1)
 		go func(f func(context.Context) string) {
 			defer wg.Done()
 			select {
 			case <-subCtx.Done():
 				return
 			default:
 				if result := f(ctx); result != "" {
 					results <- result
 					cancel()
 				}
 			}
 		}(fn)
 	}
 	go func() {
 		wg.Wait()
 		close(results)
 	}()
 	for result := range results {
 		if result != "" {
 			return result
 		}
 	}
 	return ""
 }
--- a/client/system/detect_cloud/digitalocean.go
+++ b/client/system/detect_cloud/digitalocean.go
@@ -1,24 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectDigitalOcean(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/metadata/v1/", nil)
 	if err != nil {
 		return ""
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		return "Digital Ocean"
 	}
 	return ""
 }
--- a/client/system/detect_cloud/gcp.go
+++ b/client/system/detect_cloud/gcp.go
@@ -1,25 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectGCP(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://metadata.google.internal", nil)
 	if err != nil {
 		return ""
 	}
 	req.Header.Add("Metadata-Flavor", "Google")
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		return "Google Cloud Platform"
 	}
 	return ""
 }
--- a/client/system/detect_cloud/ibmcloud.go
+++ b/client/system/detect_cloud/ibmcloud.go
@@ -1,54 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectIBMCloud(ctx context.Context) string {
 	v1ResultChan := make(chan bool, 1)
 	v2ResultChan := make(chan bool, 1)
 	go func() {
 		v1ResultChan <- detectIBMSecure(ctx)
 	}()
 	go func() {
 		v2ResultChan <- detectIBM(ctx)
 	}()
 	v1Result, v2Result := <-v1ResultChan, <-v2ResultChan
 	if v1Result || v2Result {
 		return "IBM Cloud"
 	}
 	return ""
 }
 func detectIBMSecure(ctx context.Context) bool {
 	req, err := http.NewRequestWithContext(ctx, "PUT", "https://api.metadata.cloud.ibm.com/instance_identity/v1/token", nil)
 	if err != nil {
 		return false
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return false
 	}
 	defer resp.Body.Close()
 	return resp.StatusCode == http.StatusOK
 }
 func detectIBM(ctx context.Context) bool {
 	req, err := http.NewRequestWithContext(ctx, "PUT", "http://api.metadata.cloud.ibm.com/instance_identity/v1/token", nil)
 	if err != nil {
 		return false
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return false
 	}
 	defer resp.Body.Close()
 	return resp.StatusCode == http.StatusOK
 }
--- a/client/system/detect_cloud/oracle.go
+++ b/client/system/detect_cloud/oracle.go
@@ -1,56 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectOracle(ctx context.Context) string {
 	v1ResultChan := make(chan bool, 1)
 	v2ResultChan := make(chan bool, 1)
 	go func() {
 		v1ResultChan <- detectOracleIDMSv1(ctx)
 	}()
 	go func() {
 		v2ResultChan <- detectOracleIDMSv2(ctx)
 	}()
 	v1Result, v2Result := <-v1ResultChan, <-v2ResultChan
 	if v1Result || v2Result {
 		return "Oracle"
 	}
 	return ""
 }
 func detectOracleIDMSv1(ctx context.Context) bool {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/opc/v1/instance/", nil)
 	if err != nil {
 		return false
 	}
 	req.Header.Add("Authorization", "Bearer Oracle")
 	resp, err := hc.Do(req)
 	if err != nil {
 		return false
 	}
 	defer resp.Body.Close()
 	return resp.StatusCode == http.StatusOK
 }
 func detectOracleIDMSv2(ctx context.Context) bool {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/opc/v2/instance/", nil)
 	if err != nil {
 		return false
 	}
 	req.Header.Add("Authorization", "Bearer Oracle")
 	resp, err := hc.Do(req)
 	if err != nil {
 		return false
 	}
 	defer resp.Body.Close()
 	return resp.StatusCode == http.StatusOK
 }
--- a/client/system/detect_cloud/softlayer.go
+++ b/client/system/detect_cloud/softlayer.go
@@ -1,25 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectSoftlayer(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "https://api.service.softlayer.com/rest/v3/SoftLayer_Resource_Metadata/UserMetadata.txt", nil)
 	if err != nil {
 		return ""
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		// Since SoftLayer was acquired by IBM, we should return "IBM Cloud"
 		return "IBM Cloud"
 	}
 	return ""
 }
--- a/client/system/detect_cloud/vultr.go
+++ b/client/system/detect_cloud/vultr.go
@@ -1,24 +0,0 @@
 package detect_cloud
 import (
 	"context"
 	"net/http"
 )
 func detectVultr(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/v1.json", nil)
 	if err != nil {
 		return ""
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		return "Vultr"
 	}
 	return ""
 }
--- a/client/system/detect_platform/detect.go
+++ b/client/system/detect_platform/detect.go
@@ -1,53 +0,0 @@
 package detect_platform
 import (
 	"context"
 	"net/http"
 	"sync"
 	"time"
 )
 var hc = &http.Client{Timeout: 300 * time.Millisecond}
 func Detect(ctx context.Context) string {
 	subCtx, cancel := context.WithCancel(context.Background())
 	defer cancel()
 	funcs := []func(context.Context) string{
 		detectOpenStack,
 		detectContainer,
 	}
 	results := make(chan string, len(funcs))
 	var wg sync.WaitGroup
 	for _, fn := range funcs {
 		wg.Add(1)
 		go func(f func(context.Context) string) {
 			defer wg.Done()
 			select {
 			case <-subCtx.Done():
 				return
 			default:
 				if result := f(ctx); result != "" {
 					results <- result
 					cancel()
 				}
 			}
 		}(fn)
 	}
 	go func() {
 		wg.Wait()
 		close(results)
 	}()
 	for result := range results {
 		if result != "" {
 			return result
 		}
 	}
 	return ""
 }
--- a/client/system/detect_platform/kube.go
+++ b/client/system/detect_platform/kube.go
@@ -1,17 +0,0 @@
 package detect_platform
 import (
 	"context"
 	"os"
 )
 func detectContainer(ctx context.Context) string {
 	if _, exists := os.LookupEnv("KUBERNETES_SERVICE_HOST"); exists {
 		return "Kubernetes"
 	}
 	if _, err := os.Stat("/.dockerenv"); err == nil {
 		return "Docker"
 	}
 	return ""
 }
--- a/client/system/detect_platform/openstack.go
+++ b/client/system/detect_platform/openstack.go
@@ -1,24 +0,0 @@
 package detect_platform
 import (
 	"context"
 	"net/http"
 )
 func detectOpenStack(ctx context.Context) string {
 	req, err := http.NewRequestWithContext(ctx, "GET", "http://169.254.169.254/openstack", nil)
 	if err != nil {
 		return ""
 	}
 	resp, err := hc.Do(req)
 	if err != nil {
 		return ""
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode == http.StatusOK {
 		return "OpenStack"
 	}
 	return ""
 }
--- a/client/system/info.go
+++ b/client/system/info.go
@@ -2,8 +2,6 @@ package system
 import (
 	"context"
 	"net"
 	"net/netip"
 	"strings"
 	"google.golang.org/grpc/metadata"
@@ -20,27 +18,12 @@ const OsVersionCtxKey = "OsVersion"
 // OsNameCtxKey context key for operating system name
 const OsNameCtxKey = "OsName"
 type NetworkAddress struct {
 	NetIP netip.Prefix
 	Mac   string
 }
 type Environment struct {
 	Cloud    string
 	Platform string
 }
 type Config struct {
 	RosenpassEnabled    bool
 	RosenpassPermissive bool
 	ServerSSHAllowed    bool
 }
 // Info is an object that contains machine information
 // Most of the code is taken from https://github.com/matishsiao/goInfo
 type Info struct {
 	GoOS               string
 	Kernel             string
 	Core               string
 	Platform           string
 	OS                 string
 	OSVersion          string
@@ -48,20 +31,6 @@ type Info struct {
 	CPUs               int
 	WiretrusteeVersion string
 	UIVersion          string
 	KernelVersion      string
 	NetworkAddresses   []NetworkAddress
 	SystemSerialNumber string
 	SystemProductName  string
 	SystemManufacturer string
 	Environment        Environment
 	Config             Config
 }
 // GetInfo retrieves and parses the system information
 func GetInfo(ctx context.Context, config Config) *Info {
 	info := getInfo(ctx)
 	info.Config = config
 	return info
 }
 // extractUserAgent extracts Netbird's agent (client) name and version from the outgoing context
@@ -93,53 +62,3 @@ func extractDeviceName(ctx context.Context, defaultName string) string {
 func GetDesktopUIUserAgent() string {
 	return "netbird-desktop-ui/" + version.NetbirdVersion()
 }
 func networkAddresses() ([]NetworkAddress, error) {
 	interfaces, err := net.Interfaces()
 	if err != nil {
 		return nil, err
 	}
 	var netAddresses []NetworkAddress
 	for _, iface := range interfaces {
 		if iface.HardwareAddr.String() == "" {
 			continue
 		}
 		addrs, err := iface.Addrs()
 		if err != nil {
 			continue
 		}
 		for _, address := range addrs {
 			ipNet, ok := address.(*net.IPNet)
 			if !ok {
 				continue
 			}
 			if ipNet.IP.IsLoopback() {
 				continue
 			}
 			netAddr := NetworkAddress{
 				NetIP: netip.MustParsePrefix(ipNet.String()),
 				Mac:   iface.HardwareAddr.String(),
 			}
 			if isDuplicated(netAddresses, netAddr) {
 				continue
 			}
 			netAddresses = append(netAddresses, netAddr)
 		}
 	}
 	return netAddresses, nil
 }
 func isDuplicated(addresses []NetworkAddress, addr NetworkAddress) bool {
 	for _, duplicated := range addresses {
 		if duplicated.NetIP == addr.NetIP {
 			return true
 		}
 	}
 	return false
 }
--- a/client/system/info_android.go
+++ b/client/system/info_android.go
@@ -15,28 +15,15 @@ import (
 	"github.com/netbirdio/netbird/version"
 )
-func getInfo(ctx context.Context) *Info {
+// GetInfo retrieves and parses the system information
 func GetInfo(ctx context.Context) *Info {
 	kernel := "android"
 	osInfo := uname()
 	if len(osInfo) == 2 {
 		kernel = osInfo[1]
 	}
-	var kernelVersion string
+	gio := &Info{Kernel: kernel, Core: osVersion(), Platform: "unknown", OS: "android", OSVersion: osVersion(), GoOS: runtime.GOOS, CPUs: runtime.NumCPU()}
 	if len(osInfo) > 2 {
 		kernelVersion = osInfo[2]
 	}
 	gio := &Info{
 		Kernel:        kernel,
 		Platform:      "unknown",
 		OS:            "android",
 		OSVersion:     osVersion(),
 		GoOS:          runtime.GOOS,
 		CPUs:          runtime.NumCPU(),
 		KernelVersion: kernelVersion,
 	}
 	gio.Hostname = extractDeviceName(ctx, "android")
 	gio.WiretrusteeVersion = version.NetbirdVersion()
 	gio.UIVersion = extractUserAgent(ctx)
--- a/client/system/info_darwin.go
+++ b/client/system/info_darwin.go
@@ -15,12 +15,11 @@ import (
 	log "github.com/sirupsen/logrus"
 	"github.com/netbirdio/netbird/client/system/detect_cloud"
 	"github.com/netbirdio/netbird/client/system/detect_platform"
 	"github.com/netbirdio/netbird/version"
 )
-func getInfo(ctx context.Context) *Info {
+// GetInfo retrieves and parses the system information
 func GetInfo(ctx context.Context) *Info {
 	utsname := unix.Utsname{}
 	err := unix.Uname(&utsname)
 	if err != nil {
@@ -34,34 +33,7 @@ func getInfo(ctx context.Context) *Info {
 		log.Warnf("got an error while retrieving macOS version with sw_vers, error: %s. Using darwin version instead.\n", err)
 		swVersion = []byte(release)
 	}
-
+	gio := &Info{Kernel: sysName, OSVersion: strings.TrimSpace(string(swVersion)), Core: release, Platform: machine, OS: sysName, GoOS: runtime.GOOS, CPUs: runtime.NumCPU()}
 	addrs, err := networkAddresses()
 	if err != nil {
 		log.Warnf("failed to discover network addresses: %s", err)
 	}
 	serialNum, prodName, manufacturer := sysInfo()
 	env := Environment{
 		Cloud:    detect_cloud.Detect(ctx),
 		Platform: detect_platform.Detect(ctx),
 	}
 	gio := &Info{
 		Kernel:             sysName,
 		OSVersion:          strings.TrimSpace(string(swVersion)),
 		Platform:           machine,
 		OS:                 sysName,
 		GoOS:               runtime.GOOS,
 		CPUs:               runtime.NumCPU(),
 		KernelVersion:      release,
 		NetworkAddresses:   addrs,
 		SystemSerialNumber: serialNum,
 		SystemProductName:  prodName,
 		SystemManufacturer: manufacturer,
 		Environment:        env,
 	}
 	systemHostname, _ := os.Hostname()
 	gio.Hostname = extractDeviceName(ctx, systemHostname)
 	gio.WiretrusteeVersion = version.NetbirdVersion()
@@ -69,31 +41,3 @@ func getInfo(ctx context.Context) *Info {
 	return gio
 }
 func sysInfo() (serialNumber string, productName string, manufacturer string) {
 	out, _ := exec.Command("/usr/sbin/ioreg", "-l").Output() // err ignored for brevity
 	for _, l := range strings.Split(string(out), "\n") {
 		if strings.Contains(l, "IOPlatformSerialNumber") {
 			serialNumber = trimIoRegLine(l)
 		}
 		if strings.Contains(l, "ModelNumber") && productName == "" {
 			productName = trimIoRegLine(l)
 		}
 		if strings.Contains(l, "device manufacturer") && manufacturer == "" {
 			manufacturer = trimIoRegLine(l)
 		}
 	}
 	return
 }
 func trimIoRegLine(l string) string {
 	kv := strings.Split(l, "=")
 	if len(kv) != 2 {
 		return ""
 	}
 	s := strings.TrimSpace(kv[1])
 	return strings.Trim(s, `"`)
 }
--- a/Show More
+++ b/Show More