altinea
/
install-scripts
6
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
65 Commits
3 Branches
0 Tags
919 KiB
Tree: 1c63f96bc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1c63f96bc1'
${ noResults }
install-scripts/wireguard/deploy-wg-clients.sh

43 lines
1.6 KiB
Raw Normal View History

Wireguard clients deploy script added
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Add IP variable verification
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Wireguard clients deploy script added
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Wireguard clients deploy script added
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Wireguard clients deploy script added
5 years ago
Add first ping to activate interface keepalive
5 years ago
Wireguard clients deploy script added
5 years ago
Added routes to OpenVPN Admin tunnel Changed interface name from wg0 to vpnaltinea
5 years ago
Wireguard clients deploy script added
5 years ago
Added routes to OpenVPN Admin tunnel Changed interface name from wg0 to vpnaltinea
5 years ago
Wireguard clients deploy script added
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Added routes to OpenVPN Admin tunnel Changed interface name from wg0 to vpnaltinea
5 years ago
Wireguard clients deploy script added
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Add first ping to enable tunnel
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
Wireguard clients deploy script added
5 years ago
Add some comments to wireguard customers deploy script
5 years ago
  1. #!/bin/bash
  3. # This script can be used directly from bash after defining the IP address for the node with :
  4. # IP=x bash <(curl -s https://gitlab.altinea.fr/altinea/install-scripts/raw/branch/master/wireguard/deploy-wg-clients.sh)
  6. if ! [[ $IP =~ ^[0-9]{1,3}$ ]] ; then
  7. echo "error: Please set IP variable (with IP=1-254. See https://phpipam.altinea.fr" >&2; exit 1
  8. fi
  10. # Create keys subdir, generate private and derive public key
  11. mkdir -p /etc/wireguard/keys
  12. umask 077 && wg genkey > /etc/wireguard/keys/private.key && wg pubkey < /etc/wireguard/keys/private.key > /etc/wireguard/keys/public.key && umask 0022
  14. # Calculate IPv4 and IPv6 address
  15. IP4="10.17.25.$IP"
  16. IP6="fd42:42:42:25"`printf '%.2x\n' $IP`"::"
  18. # Create config file for wireguard interface
  19. echo "[Interface]
  20. Address = $IP4/32
  21. Address = $IP6/64
  22. SaveConfig = false
  23. PostUp = wg set %i private-key /etc/wireguard/keys/private.key
  24. PostUp = ping -c1 10.17.25.1
  26. [Peer]
  27. PublicKey = iu3I09FtiVDIOuiU83JvpfJkg4yiCxolqcFsXbz5Ixc=
  28. AllowedIPs = 10.17.24.0/22, fd42:42:42::/48 # All Wireguard address space
  29. AllowedIPs = 172.16.5.0/24, fc00:db8:f00:bebe::/64 # OpenVPN Admin tunnel
  31. Endpoint = vpn.altinea.fr:58212
  32. PersistentKeepalive = 25" > /etc/wireguard/vpnaltinea.conf
  34. # Enable and start interface (systemctl needed)
  35. systemctl enable wg-quick@vpnalinea.service && systemctl daemon-reload && systemctl start wg-quick@vpnaltinea
  37. # Run a ping to make the interface usable
  38. ping -c1 192.168.25.1
  40. # Display the public key to add it on the wireguard concentrator
  41. echo -n "Public key : "
  42. cat /etc/wireguard/keys/public.key
  43. exit 0;