Check out my first novel, midnight's simulacra!
Wireguard: Difference between revisions
From dankwiki
No edit summary |
No edit summary |
||
(One intermediate revision by the same user not shown) | |||
Line 3: | Line 3: | ||
output will now show up in the journal. Disable with <tt>-p</tt>. | output will now show up in the journal. Disable with <tt>-p</tt>. | ||
==[[systemd]]== | |||
WireGuard is supported by <tt>systemd-networkd</tt>: | |||
<pre> | |||
[NetDev] | |||
Name=xxx | |||
Kind=wireguard | |||
Description=WireGuard tunnel xxx | |||
[WireGuard] | |||
ListenPort=localport | |||
PrivateKey=xxx | |||
[WireGuardPeer] | |||
PublicKey=xxx | |||
PresharedKey=xxx | |||
AllowedIPs=remoteaddr-internal | |||
Endpoint=remoteaddr-external:remoteport | |||
</pre> | |||
'''To reload a wireguard configuration expressed in a <tt>netdev</tt> file, it is necessary to run <tt>systemctl restart systemd-networkd</tt>.''' |
Latest revision as of 15:33, 28 February 2021
Debugging
echo module wireguard +p |sudo tee /sys/kernel/debug/dynamic_debug/control
output will now show up in the journal. Disable with -p.
systemd
WireGuard is supported by systemd-networkd:
[NetDev] Name=xxx Kind=wireguard Description=WireGuard tunnel xxx [WireGuard] ListenPort=localport PrivateKey=xxx [WireGuardPeer] PublicKey=xxx PresharedKey=xxx AllowedIPs=remoteaddr-internal Endpoint=remoteaddr-external:remoteport
To reload a wireguard configuration expressed in a netdev file, it is necessary to run systemctl restart systemd-networkd.