shimun/wireguard-user
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

add dev ip

Browse Source
This commit is contained in:
shim_ 2019-01-04 19:54:27 +01:00
parent ac19c2c9b1
commit 1fc4e1de98
2 changed files with 9 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
init.sh
View File

@ -5,12 +5,12 @@ set -e
WG_IF=${WG_INTERFACE:-wg0}
PHY_IF=${WG_HOST_INTERFACE:-$(ip route | awk '/default/ { print $5 }')}
ADDRESS=${WG_ADDRESS:-192.168.2.1}
ADDRESS=${WG_ADDRESS:-10.200.200.1/24}
function shutdown() {
wg-quick down $WG_IF
#iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -D FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -D FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -D POSTROUTING -s $ADDRESS/32 -o $PHY_IF -j MASQUERADE;
iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -D POSTROUTING -o $PHY_IF -j MASQUERADE
ip link del dev $WG_IF
iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -D FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -D FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -D POSTROUTING -s $ADDRESS -o $PHY_IF -j MASQUERADE;
#iptables -D FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -D POSTROUTING -o $PHY_IF -j MASQUERADE
wg showconf $WG_IF > /etc/wireguard/$WG_IF.conf
killall sleep
}
@ -28,8 +28,9 @@ fi
trap shutdown EXIT
ifconfig $WG_IF up $ADDRESS
#iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -A FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -A FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -A POSTROUTING -s $ADDRESS/32 -o $PHY_IF -j MASQUERADE;
iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -A POSTROUTING -o $PHY_IF -j MASQUERADE
ip link set up dev $WG_IF
ip address add $ADDRESS dev $WG_IF
iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -A FORWARD -i $WG_IF -o $PHY_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -A FORWARD -i $PHY_IF -o $WG_IF -m state --state RELATED,ESTABLISHED -j ACCEPT; iptables -t nat -A POSTROUTING -s $ADDRESS -o $PHY_IF -j MASQUERADE;
#iptables -A FORWARD -i $WG_IF -j ACCEPT; iptables -t nat -A POSTROUTING -o $PHY_IF -j MASQUERADE
sleep 100000000

2
wireguard-user.service
View File

@ -19,7 +19,7 @@ ExecStartPre=-/bin/mknod /dev/net/tun c 10 200
#Defaults
#Environment=WG_INTERFACE=wg0
#Environment=WG_HOST_INTERFACE=eth0
#Environment=WG_ADDRESS:-192.168.2.1
#Environment=WG_ADDRESS=10.200.200.1/24
Environment=ROOT_DIR=/srv/wireguard