|
|
@@ -131,8 +131,8 @@ cat <<EOF >wg0.conf
|
|
|
[Interface]
|
|
|
PrivateKey = $(cat sprivatekey)
|
|
|
Address = 10.0.0.1/24, ${ipv6_range}1/64
|
|
|
-PostUp = iptables -I FORWARD -i wg0 -j ACCEPT; iptables -I FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT; ip6tables -I FORWARD -i wg0 -j ACCEPT; ip6tables -I FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
|
|
|
-PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -D FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT; ip6tables -D FORWARD -i wg0 -j ACCEPT; ip6tables -D FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
|
|
|
+PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -A FORWARD -o wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE; ip6tables -A FORWARD -i wg0 -j ACCEPT; ip6tables -A FORWARD -o wg0 -j ACCEPT; ip6tables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
|
|
|
+PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -D FORWARD -o wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE; ip6tables -D FORWARD -i wg0 -j ACCEPT; ip6tables -D FORWARD -o wg0 -j ACCEPT; ip6tables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
|
|
|
ListenPort = $port
|
|
|
DNS = 8.8.8.8, 2001:4860:4860::8888
|
|
|
MTU = $mtu
|
|
|
@@ -191,6 +191,11 @@ EOF
|
|
|
cat /etc/wireguard/wg_${host}_$i.conf | qrencode -o wg_${host}_$i.png
|
|
|
done
|
|
|
|
|
|
+# If the vps network card is not eth0, modify it to the actual network card
|
|
|
+ni=$(ls /sys/class/net | awk {print} | grep -e eth. -e ens. -e venet.)
|
|
|
+if [ $ni != "eth0" ]; then
|
|
|
+ sed -i "s/eth0/${ni}/g" /etc/wireguard/wg0.conf
|
|
|
+fi
|
|
|
|
|
|
# restart WG server
|
|
|
wg-quick down wg0
|
