wirdgurad 组网教学记录

 

服务端部署

docker run -d \

  --name=wireguard \

  --network host \

  --cap-add=NET_ADMIN \

  --cap-add=SYS_MODULE \

  -e PUID=1000 \

  -e PGID=1000 \

  -e TZ=Etc/UTC \

  -e SERVERURL=47.7.144.41 \

  -e SERVERPORT=51820 \

  -e PEERS=my01,my02,my03,my04,my05 \

  -e INTERNAL_SUBNET=10.13.13.0 \

  -e ALLOWEDIPS=10.13.13.0/24 \

  -e PERSISTENTKEEPALIVE_PEERS=all \

  -e SERVER_ALLOWEDIPS_PEER_myPhone="192.168.1.0/24,192.168.2.0/24,192.168.100.0/24" \

  -e LOG_CONFS=true \

  -v /home/docker/wireguard/config:/config \

  -v /lib/modules:/lib/modules \

  --restart unless-stopped \

  lscr.io/linuxserver/wireguard:latest

服务端显示客户端信息

docker exec -it wireguard bash -c 'for i in $(ls /config | grep peer_ | sed "s/peer_//"); do echo "--- $i ---"; /app/show-peer $i; done'

docker exec wireguard sh -c 'for d in /config/peer_*; do echo "===== $(basename $d) ====="; cat $d/*.conf; echo; done'

查看组网状态

docker exec wireguard wg show

客户端配置

k add wireguard-tools

nano ~/wg0.conf

加上断点检测

PersistentKeepalive = 25

运行连接

wg-quick up ~/wg0.conf

多端时区同步