Wireguard

From dankwiki

Debugging

echo module wireguard +p |sudo tee /sys/kernel/debug/dynamic_debug/control

output will now show up in the journal. Disable with -p.

systemd

WireGuard is supported by systemd-networkd:

[NetDev]
Name=xxx
Kind=wireguard
Description=WireGuard tunnel xxx

[WireGuard]
ListenPort=localport
PrivateKey=xxx

[WireGuardPeer]
PublicKey=xxx
PresharedKey=xxx
AllowedIPs=remoteaddr-internal
Endpoint=remoteaddr-external:remoteport