Skip to content

Wireguard

wireguard / wireguard-tools

This supplies the main userspace tooling for using and configuring WireGuard tunnels, including the wg(8) and wg-quick(8) utilities. This project supports Linux, OpenBSD, FreeBSD, macOS, Windows, and Android.

Client

Example Wireguard client config
[Interface]
Address = 10.200.100.8/24 # (1)!
DNS = 10.200.100.1 # (2)!
PrivateKey = "oK56DE9Ue9zK76rAc8pBl6opph+1v36lm7cXXsQKrQM=" # (3)!

[Peer]
PublicKey = "GtL7fZc/bLnqZldpVofMCD6hDjrK28SsdLxevJ+qtKU=" # (4)!
PresharedKey = "/UwcSPg38hW/D9Y3tcS1FOV0K1wuURMbS0sesJEP5ak=" # (5)!
AllowedIPs = 0.0.0.0/0 # (6)!
Endpoint = demo.wireguard.com:51820 # (7)!
  1. The local IP address and network of the interface on the client node
  2. DNS server to use for this interface
  3. Client's private key
  4. The public key of the server
  5. The (private) pre-shared key
  6. AllowedIPs is the IP addresses to which requests will be routed over the wiregurard interface. For example, 0.0.0.0/0 directs all traffic over the
  7. Publically accessible hostname and port for the server.

Host

UniFi Gateway - WireGuard VPN Server