WireGuard VPN
Install
Generate Keys
Config
- Edit WireGuard Config
- Add the Local Address/Port/Key/Scripts and Peer
Startup
Shell Script

WireGuard VPN

Install

sudo pacman -S wireguard-tools

Generate Keys

wg genkey | tee privatekey | wg pubkey > publickey
wg genpsk

Config

Edit WireGuard Config

vim /etc/wireguard/wg0.conf

Add the Local Address/Port/Key/Scripts and Peer

[Interface]
Address = $wireguard_address
PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o $interface -j MASQUERADE;
PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o $interface -j MASQUERADE;
ListenPort = $port
PrivateKey = $key

[Peer]
PublicKey = $peer_public_key
AllowedIPs = $peer_wireguard_address, $remote_subnet
Endpoint = $peer_public_ip:$peer_port
PresharedKey = $prehared_key

Startup

wg-quick up $interface

Table of Contents

WireGuard VPN

Install

Generate Keys

Config

Edit WireGuard Config

Add the Local Address/Port/Key/Scripts and Peer

Startup

Shell Script