chuleta_wireguard
This is an old revision of the document!
#crear pareja de claves wg genkey | tee /etc/wireguard/privatekey | wg pubkey | tee /etc/wireguard/publickey #crear config de servidor # cat /etc/wireguard/wg0.conf [Interface] Address = 10.0.0.1/24 SaveConfig = true ListenPort = 51820 PrivateKey = k0+48PyALsG0TBEY6lvrrZtY/lmezHgn04xPqLMK33s= PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -t nat -A POSTROUTING -o ens3 -j MASQUERADE PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -t nat -D POSTROUTING -o ens3 -j MASQUERADE # arrancar wireguard wg-quick up wg0 # registrar como servicio systemctl enable wg-quick@wg0 # ver estado watch wg show #añadir cliente wg set wg0 peer FTOxio2hvUd9Q3CHJtEIWr267UZLKy3MbJNWDsgLfn8= allowed-ips 10.0.0.11 #eliminar cliente wg set wg0 peer HpO8VDfvmwJj6HlZLfapADU2kll4NTQnM8eJCNfbzUo= remove
chuleta_wireguard.1627496353.txt.gz · Last modified: by etfiat