Jump to content

WireGuard Configuration Example: Difference between revisions

no edit summary
No edit summary
No edit summary
(5 intermediate revisions by 3 users not shown)
Line 1: Line 1:
<!-- Template uses {{{name}}}, {{{series}}}  -->
{{Template:Networking_rutos_manual_fw_disclosure
| fw_version = {{{series}}}_R_00.02.04
| series    = {{{series}}}
}}
__TOC__
__TOC__


Line 10: Line 5:
'''WireGuard''' is simple, fast, lean, and modern VPN that utilizes secure and trusted cryptography.  
'''WireGuard''' is simple, fast, lean, and modern VPN that utilizes secure and trusted cryptography.  
This page will show you an example on how to configure a basic tunnel between WireGuard interface and its peers.
This page will show you an example on how to configure a basic tunnel between WireGuard interface and its peers.
<u><b>Note:</b> WireGuard is additional software that can be installed from the <b>Services → Package Manager</b> page</u> (in RUT9/RUT2 this page is located in <b>System → Package Manager</b>).


==Prerequisites==
==Prerequisites==
Line 110: Line 107:
----
----


Lastly atleast one device has to enter Remote instance Public WAN IP address. Enter IP address, save and move to the [[WireGuard_Configuration_Example#Testing Configuration|Testing Configuration]].
Lastly atleast one device has to enter Public IP address from Remote instance. Enter IP address, save and move to the  
[[WireGuard_Configuration_Example#Testing Configuration|Testing Configuration]].
 
If in the [[WireGuard_Configuration_Example#Instance Configuration|Instance Configuration]] you
specified port other than 51820 then you also need to specify it here.


[[File:Networking_wireguard_configuration_example_interface_peers_configuration_advanced_trb141_v1.png|border|class=tlt-border]]
[[File:Networking_wireguard_configuration_example_interface_peers_configuration_advanced_trb141_v1.png|border|class=tlt-border]]


==Testing Configuration==
==Testing Configuration==
To initiate connection and test it you need to open Command Line Interface (Services → CLI) and login.
Then type
    wg
If you see <b>latest handshake</b> line then it means you have established a connection between your devices and
you are able to communicate via IP addresses specified in number <b>2</b> and <b>4</b> fields from the images in
[[WireGuard_Configuration_Example#Instance Configuration|Instance Configuration]].
[[File:Networking_wireguard_configuration_example_interface_wg_established_trb141_v1.png|border|class=tlt-border]]
If you dont see <b>latest handshake</b> line, then ping the <b>Public IP address</b> you specified in
<b>Endpoint Host</b> field, this will initiate handshake.
    ping XX.XX.XX.XX