Startseite Erkunden Hilfe
Anmelden
hongwenjun
/
vps_setup
Mirror von https://github.com/hongwenjun/vps_setup
1
0
Fork 0
Dateien Issues 0 Wiki
Struktur: 3597a1b84b
Branches Tags
vps_setup
/
Wireguard
/
wg5clients.sh

wg5clients.sh 2.7 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144 
  1. #!/bin/bash
    2. 

  2. 

  3. # 配置步骤 WireGuard服务端
    4. 

  4. 

  5. 

  6. cd /etc/wireguard
    7. 

  7. # 然后开始生成 密匙对(公匙+私匙)。
    8. 

  8. wg genkey | tee sprivatekey | wg pubkey > spublickey
    9. 

  9. wg genkey | tee cprivatekey1 | wg pubkey > cpublickey1
    10. 

  10. wg genkey | tee cprivatekey2 | wg pubkey > cpublickey2
    11. 

  11. wg genkey | tee cprivatekey3 | wg pubkey > cpublickey3
    12. 

  12. wg genkey | tee cprivatekey4 | wg pubkey > cpublickey4
    13. 

  13. wg genkey | tee cprivatekey5 | wg pubkey > cpublickey5
    14. 

  14. 

  15. 

  16. # 获得服务器ip
    17. 

  17. serverip=$(curl -4 icanhazip.com)
    18. 

  18. 

  19. 

  20. # 生成服务端 多用户配置文件
    21. 

  21. cat <<EOF >wg0.conf
    22. 

  22. [Interface]
    23. 

  23. PrivateKey = $(cat sprivatekey)
    24. 

  24. Address = 10.0.0.1/24 
    25. 

  25. PostUp   = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -A FORWARD -o wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
    26. 

  26. PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -D FORWARD -o wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
    27. 

  27. ListenPort = 9009
    28. 

  28. DNS = 8.8.8.8
    29. 

  29. MTU = 1300
    30. 

  30. 

  31. [Peer]
    32. 

  32. PublicKey = $(cat cpublickey1)
    33. 

  33. AllowedIPs = 10.0.0.2/32
    34. 

  34. 

  35. [Peer]
    36. 

  36. PublicKey = $(cat cpublickey2)
    37. 

  37. AllowedIPs = 10.0.0.8/32
    38. 

  38. 

  39. [Peer]
    40. 

  40. PublicKey = $(cat cpublickey3)
    41. 

  41. AllowedIPs = 10.0.0.18/32
    42. 

  42. 

  43. [Peer]
    44. 

  44. PublicKey = $(cat cpublickey4)
    45. 

  45. AllowedIPs = 10.0.0.88/32
    46. 

  46. 

  47. [Peer]
    48. 

  48. PublicKey = $(cat cpublickey5)
    49. 

  49. AllowedIPs = 10.0.0.188/32
    50. 

  50. 

  51. EOF
    52. 

  52. 

  53. 

  54. # 生成简洁的客户端配置
    55. 

  55. cat <<EOF >client.conf
    56. 

  56. [Interface]
    57. 

  57. PrivateKey = $(cat cprivatekey1)
    58. 

  58. Address = 10.0.0.2/24
    59. 

  59. DNS = 8.8.8.8
    60. 

  60. MTU = 1300
    61. 

  61. 

  62. [Peer]
    63. 

  63. PublicKey = $(cat spublickey)
    64. 

  64. Endpoint = $serverip:9009
    65. 

  65. AllowedIPs = 0.0.0.0/0, ::0/0
    66. 

  66. PersistentKeepalive = 25
    67. 

  67. 

  68. EOF
    69. 

  69. 

  70. cat <<EOF >client_2.conf
    71. 

  71. [Interface]
    72. 

  72. PrivateKey = $(cat cprivatekey2)
    73. 

  73. Address = 10.0.0.8/24
    74. 

  74. DNS = 8.8.8.8
    75. 

  75. MTU = 1300
    76. 

  76. 

  77. [Peer]
    78. 

  78. PublicKey = $(cat spublickey)
    79. 

  79. Endpoint = $serverip:9009
    80. 

  80. AllowedIPs = 0.0.0.0/0, ::0/0
    81. 

  81. PersistentKeepalive = 25
    82. 

  82. 

  83. EOF
    84. 

  84. 

  85. cat <<EOF >client_3.conf
    86. 

  86. [Interface]
    87. 

  87. PrivateKey = $(cat cprivatekey3)
    88. 

  88. Address = 10.0.0.18/24
    89. 

  89. DNS = 8.8.8.8
    90. 

  90. MTU = 1300
    91. 

  91. 

  92. [Peer]
    93. 

  93. PublicKey = $(cat spublickey)
    94. 

  94. Endpoint = $serverip:9009
    95. 

  95. AllowedIPs = 0.0.0.0/0, ::0/0
    96. 

  96. PersistentKeepalive = 25
    97. 

  97. 

  98. EOF
    99. 

  99. 

  100. 

  101. cat <<EOF >client_4.conf
    102. 

  102. [Interface]
    103. 

  103. PrivateKey = $(cat cprivatekey4)
    104. 

  104. Address = 10.0.0.88/24
    105. 

  105. DNS = 8.8.8.8
    106. 

  106. MTU = 1300
    107. 

  107. 

  108. [Peer]
    109. 

  109. PublicKey = $(cat spublickey)
    110. 

  110. Endpoint = $serverip:9009
    111. 

  111. AllowedIPs = 0.0.0.0/0, ::0/0
    112. 

  112. PersistentKeepalive = 25
    113. 

  113. 

  114. EOF
    115. 

  115. 

  116. 

  117. cat <<EOF >client_5.conf
    118. 

  118. [Interface]
    119. 

  119. PrivateKey = $(cat cprivatekey5)
    120. 

  120. Address = 10.0.0.188/24
    121. 

  121. DNS = 8.8.8.8
    122. 

  122. MTU = 1300
    123. 

  123. 

  124. [Peer]
    125. 

  125. PublicKey = $(cat spublickey)
    126. 

  126. Endpoint = $serverip:9009
    127. 

  127. AllowedIPs = 0.0.0.0/0, ::0/0
    128. 

  128. PersistentKeepalive = 25
    129. 

  129. 

  130. EOF
    131. 

  131. 

  132. 

  133. 

  134. # 重启wg服务器
    135. 

  135. wg-quick down wg0
    136. 

  136. wg-quick up wg0
    137. 

  137. wg
    138. 

  138. 

  139. # 打包客户端 配置
    140. 

  140. tar cvf  wg5clients.tar client*
    141. 

  141. curl --upload-file ./wg5clients.tar  https://transfer.sh/wg5clients.tar
    142. 

  142. 

  143. echo '按提示的网址下载客户端包,保留2星期'
    144. 

  144.