5,337
edits
WireGuard: Difference between revisions
→Server
(→Server) |
(→Server) |
||
| Line 43: | Line 43: | ||
* [https://www.linode.com/docs/networking/vpn/set-up-wireguard-vpn-on-ubuntu/ https://www.linode.com/docs/networking/vpn/set-up-wireguard-vpn-on-ubuntu/] | * [https://www.linode.com/docs/networking/vpn/set-up-wireguard-vpn-on-ubuntu/ https://www.linode.com/docs/networking/vpn/set-up-wireguard-vpn-on-ubuntu/] | ||
* [https://www.cyberciti.biz/faq/ubuntu-20-04-set-up-wireguard-vpn-server/ https://www.cyberciti.biz/faq/ubuntu-20-04-set-up-wireguard-vpn-server/] | * [https://www.cyberciti.biz/faq/ubuntu-20-04-set-up-wireguard-vpn-server/ https://www.cyberciti.biz/faq/ubuntu-20-04-set-up-wireguard-vpn-server/] | ||
===Front-ends=== | |||
Managing connections manually is a large pain. | |||
[https://github.com/subspacecloud/subspace Subspace] provides a front end you can use. | |||
Below is my setup. I have subspace running on port 52395. Apache and certbot manages SSL/TLS and proxies to this local port. | |||
<pre> | |||
docker create \ | |||
--name subspace \ | |||
--restart always \ | |||
--network host \ | |||
--cap-add NET_ADMIN \ | |||
--volume /usr/bin/wg:/usr/bin/wg \ | |||
--volume /home/david/wireguard/data:/data \ | |||
--env SUBSPACE_HTTP_HOST=wireguard.davidl.me \ | |||
--env SUBSPACE_HTTP_ADDR="localhost:52395" \ | |||
--env SUBSPACE_HTTP_INSECURE="true" \ | |||
--env SUBSPACE_LETSENCRYPT="false" \ | |||
subspacecloud/subspace:latest | |||
sudo docker start subspace | |||
</pre> | |||