Check out my first novel, midnight's simulacra!

Wireguard

From dankwiki
Revision as of 15:33, 28 February 2021 by Dank (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Debugging

echo module wireguard +p |sudo tee /sys/kernel/debug/dynamic_debug/control

output will now show up in the journal. Disable with -p.

systemd

WireGuard is supported by systemd-networkd:

[NetDev]
Name=xxx
Kind=wireguard
Description=WireGuard tunnel xxx

[WireGuard]
ListenPort=localport
PrivateKey=xxx

[WireGuardPeer]
PublicKey=xxx
PresharedKey=xxx
AllowedIPs=remoteaddr-internal
Endpoint=remoteaddr-external:remoteport

To reload a wireguard configuration expressed in a netdev file, it is necessary to run systemctl restart systemd-networkd.