Check out my first novel, midnight's simulacra!

Wireguard: Difference between revisions

From dankwiki
No edit summary
No edit summary
 
Line 23: Line 23:
Endpoint=remoteaddr-external:remoteport
Endpoint=remoteaddr-external:remoteport
</pre>
</pre>
'''To reload a wireguard configuration expressed in a <tt>netdev</tt> file, it is necessary to run <tt>systemctl restart systemd-networkd</tt>.'''

Latest revision as of 15:33, 28 February 2021

Debugging

echo module wireguard +p |sudo tee /sys/kernel/debug/dynamic_debug/control

output will now show up in the journal. Disable with -p.

systemd

WireGuard is supported by systemd-networkd:

[NetDev]
Name=xxx
Kind=wireguard
Description=WireGuard tunnel xxx

[WireGuard]
ListenPort=localport
PrivateKey=xxx

[WireGuardPeer]
PublicKey=xxx
PresharedKey=xxx
AllowedIPs=remoteaddr-internal
Endpoint=remoteaddr-external:remoteport

To reload a wireguard configuration expressed in a netdev file, it is necessary to run systemctl restart systemd-networkd.