![](https://lemmy.blahaj.zone/pictrs/image/KtYEuuNZVB.png)
![](https://beehaw.org/pictrs/image/c0e83ceb-b7e5-41b4-9b76-bfd152dd8d00.png)
Like other people have said, this is very similar to how the Internet already works. All you need to do to connect to the Internet is connect to a single router that’s a part of it, at least in theory. The Internet is already decentralized on the backend, it’s just that only big players get to be a part of it for the most part.
A fundamental problem with your decentralization idea is that on a mesh network, you become reliant on your upstream(s) for your connection. You think Comcast is annoying, or your connection is slow? Imagine trying to troubleshoot your Internet connection and having to go deal with your neighbor instead, but he’s at work so you have to wait for him, but oh he’s too tired so he’ll help you tomorrow…
Not to mention that this severely limits speeds. No longer can your connection go from your house, to the street, to the backbone, and then straight to Google’s servers, now it has to go bounce around between a number of potentially unreliable consumer connections, run by non-professionals.
In a system like this, inevitably local organizations or companies will pop up to take the burden off individuals, which would provide massive QoL improvements, and we’d end up with ISPs again.
That said, there’s a lot of people doing hobby network stuff out there. I know some hackerspaces have their own local hobbynets, that then connect to each other over the open Internet using VPN tunnels. This solves some of the reliability problem, plus it’s just a hobby thing so it isn’t a problem that it’s slow and kinda bad. Then there are even individuals who get their own routers (or VPSes) and plop them in datacenters to participate in the internet alongside big companies and ISPs. Neither of these require new protocols, everything can be done with TCP/IP and BGP. (Plus a splash of VPN protocols here and there.)
WG uses UDP, so as long as your firewall is configured correctly it should be impossible to scan the open port. Any packet hitting the open port that isn’t valid or doesn’t have a valid key is just dropped, same as any ports that are closed.
Most modern firewalls default to dropping packets, so you won’t be showing up in scans even with an open WG port.