Update with docker conf
parent
532d2f179e
commit
aca7f9fbdf
30
README.md
30
README.md
|
@ -48,3 +48,33 @@ wiershark pcap/keep_alive.pcap # public interface (encrypted traffic, keepalive
|
||||||
|
|
||||||
## Good resource about wireguard
|
## Good resource about wireguard
|
||||||
- [github](https://github.com/pirate/wireguard-docs)
|
- [github](https://github.com/pirate/wireguard-docs)
|
||||||
|
|
||||||
|
## Enable IP forwarding on the peer through which other devices on the network will connect to WireGuard peer
|
||||||
|
```bash
|
||||||
|
sysctl -w net.ipv4.ip_forward=1
|
||||||
|
sysctl -w net.ipv6.conf.all.forwarding=1
|
||||||
|
```
|
||||||
|
|
||||||
|
## ENABLE logging for debugging
|
||||||
|
```bash
|
||||||
|
modprobe wireguard
|
||||||
|
echo module wireguard +p > /sys/kernel/debug/dynamic_debug/control
|
||||||
|
dmesg -wH
|
||||||
|
```
|
||||||
|
|
||||||
|
## Run in docker
|
||||||
|
```yml
|
||||||
|
version: '3'
|
||||||
|
|
||||||
|
services:
|
||||||
|
wireguard:
|
||||||
|
image: linuxserver/wireguard
|
||||||
|
ports:
|
||||||
|
- 51820:51820/udp
|
||||||
|
cap_add:
|
||||||
|
- NET_ADMIN
|
||||||
|
- SYS_MODULE
|
||||||
|
volumes:
|
||||||
|
- /lib/modules:/lib/modules
|
||||||
|
- ./wg0.conf:/config/wg0.conf:ro
|
||||||
|
```
|
||||||
|
|
|
@ -148,16 +148,3 @@
|
||||||
- name: Add each peer to root node configuration
|
- name: Add each peer to root node configuration
|
||||||
ansible.builtin.shell: "wg set wg0 peer {{ peer_node_pubkeys[item] }} allowed-ips 10.6.0.{{ item+2 }}"
|
ansible.builtin.shell: "wg set wg0 peer {{ peer_node_pubkeys[item] }} allowed-ips 10.6.0.{{ item+2 }}"
|
||||||
loop: "{{ range(0, n_peer_nodes) | list }}"
|
loop: "{{ range(0, n_peer_nodes) | list }}"
|
||||||
|
|
||||||
|
|
||||||
# Enable IP forwarding on the peer through which other devices on the network will connect to WireGuard peer
|
|
||||||
# sysctl -w net.ipv4.ip_forward=1
|
|
||||||
# sysctl -w net.ipv6.conf.all.forwarding=1
|
|
||||||
#
|
|
||||||
#
|
|
||||||
#
|
|
||||||
# ENABLE LOGGING FOR DEBUGGING
|
|
||||||
# modprobe wireguard
|
|
||||||
# echo module wireguard +p > /sys/kernel/debug/dynamic_debug/control
|
|
||||||
# dmesg -wH
|
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue