Skip to content

zbinlin/wireguard-configuration

BranchesTags

Repository files navigation

Server side

Requirements:

  • socat
  • nmap
  • iptables/ip6tables
# socat EXEC:./server.sh,pty,rawer TCP-LISTEN:12345,bind=192.168.128.1,fork,reuseaddr
./start-server.sh
# or
sudo ./start-server.sh

Client side

export ENDPOINT=<...>
export REMOTE_HOSTNAME=192.168.128.1
export REMOTE_PORT=12345
./start-client.sh

Alt

Wireguard over Websocket (TODO)

  1. Install websocat
cargo install --features=ssl websocat

If use nginx as websocat proxy, first configure nginx.

Server:

websocat --udp-reuseaddr -E -b --restrict-uri / ws-listen:172.17.0.1:8443 udp:127.0.0.1:8443

Or direct use websocat, generate pkcs12 cert:

openssl pkcs12 -export -out cert.pkcs12 -inkey key.pem -in cert.pem

then

websocat --udp-reuseaddr -E -b --restrict-uri / --pkcs12-der ./cert.pkcs12 --pkcs12-passwd <PASSWORD> ws-listen:172.17.0.1:443 udp:127.0.0.1:8443

Client:

websocat -E --ping-interval 10 --ping-timeout 30 -b udp-listen:127.0.0.1:8443 autoreconnect:wss://<SERVER>

or

websocat -E --ping-interval 10 --ping-timeout 30 --ws-c-uri ws://<WE_ENDPOINT> --tls-domain <WS_DOMAIN> -b udp-listen:127.0.0.1:8443 autoreconnect:ws-c:tls-connect:tcp:<IP>:<PORT>

and configure wireguard endpoint as 127.0.0.1:8443.

NOTE: The websocket server ip must be bypass wireguard.

About

No description or website provided.

Topics

wireguard wireguard-tunnel wireguard-vpn-setup

Resources

Readme
Activity

Stars

69 stars

Watchers

3 watching

Forks

22 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy