From 1fc4e1de981accdfd28256145aa8980911d27e3b Mon Sep 17 00:00:00 2001
From: shim_ <>
Date: Fri, 4 Jan 2019 19:54:27 +0100
Subject: [PATCH] add dev ip

---
 init.sh                | 15 ++++++++-------
 wireguard-user.service |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/init.sh b/init.sh
index 9b4049e..e4dd832 100755
--- a/init.sh
+++ b/init.sh
@@ -5,12 +5,12 @@ set -e
 
 WG_IF=${WG_INTERFACE:-wg0}
 PHY_IF=${WG_HOST_INTERFACE:-$(ip route | awk '/default/ { print $5 }')}
-ADDRESS=${WG_ADDRESS:-192.168.2.1}
+ADDRESS=${WG_ADDRESS:-10.200.200.1/24}
 
 function shutdown() {
- wg-quick down $WG_IF
- #iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -D FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -D FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -D POSTROUTING -s $ADDRESS/32 -o $PHY_IF -j MASQUERADE;
- iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -D POSTROUTING -o $PHY_IF -j MASQUERADE
+ ip link del dev $WG_IF
+ iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -D FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -D FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -D POSTROUTING -s $ADDRESS -o $PHY_IF -j MASQUERADE;
+ #iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -D POSTROUTING -o $PHY_IF -j MASQUERADE
  wg showconf $WG_IF > /etc/wireguard/$WG_IF.conf
  killall sleep
 }
@@ -28,8 +28,9 @@ fi
 
 trap shutdown EXIT
 
-ifconfig $WG_IF up $ADDRESS
-#iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -A FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -A FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -A POSTROUTING -s $ADDRESS/32 -o $PHY_IF -j MASQUERADE;
-iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -A POSTROUTING -o $PHY_IF -j MASQUERADE
+ip link set up dev $WG_IF
+ip address add $ADDRESS dev $WG_IF
+iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -A FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -A FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -A POSTROUTING -s $ADDRESS -o $PHY_IF -j MASQUERADE;
+#iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -A POSTROUTING -o $PHY_IF -j MASQUERADE
 
 sleep 100000000
diff --git a/wireguard-user.service b/wireguard-user.service
index fc5cd94..1e7b99e 100644
--- a/wireguard-user.service
+++ b/wireguard-user.service
@@ -19,7 +19,7 @@ ExecStartPre=-/bin/mknod /dev/net/tun c 10 200
 #Defaults
 #Environment=WG_INTERFACE=wg0
 #Environment=WG_HOST_INTERFACE=eth0
-#Environment=WG_ADDRESS:-192.168.2.1
+#Environment=WG_ADDRESS=10.200.200.1/24
 
 Environment=ROOT_DIR=/srv/wireguard