1、服务器配置说明(这里把有公网IP的节点称为服务器)

[Interface]
Address = 10.6.6.1/24
ListenPort = 50816
PrivateKey = qMKue4ZMOYDyj+fmuBkJsbqAc+65MdRZ465YpmKa6mo=
DNS = 8.8.8.8
MTU = 1420
PreUp = echo WireGuard PreUp
PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -A FORWARD -o wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
PreDown = echo WireGuard PreDown
PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -D FORWARD -o wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE


# local 配置
[Peer]
PublicKey = JKxyT53MmJlucrGl9AKlC/EpnHaqj3a6DdXItmDDznw=
PresharedKey = LxzOJt+IGMKv/KSsxWNtlX7LH5OylHp6NtjOo0w6F7g=
AllowedIPs = 10.6.6.3/32, 192.168.85.1/24   # 此处表示,允许流量 10.6.6.3 的节点流量 和 网段为 192.168.85.1/24 的 网络流量,即表示 服务器 可以访问 192.168.85.1/24 的 内网网段

# test 配置
[Peer]
PublicKey = jjnJoV8QlyT6t801YSgOFBJSuG6y2hQOcjDwWIXNJBk=
PresharedKey = eITmnahqtqXcI00fNtNRzKBZYXQbK0JNy0tsD5aJ+VA=
AllowedIPs = 10.6.6.2/24  # 对等节点(peer)是中继服务器,可以将流量转发到其他对等节点(peer)

2、客户端配置

# test 配置
[Interface]
Address = 10.6.6.2/24
PrivateKey = qDByZXwAeg8a7gG9XVo9Hj2Ur2/ly1i+j2HSMRh7UmA=

MTU = 1420
[Peer]
PublicKey = 21RiRj19ftOUd/HVT4tmJZRVRM3mku2mM5JnzVJvhEU=
PresharedKey = eITmnahqtqXcI00fNtNRzKBZYXQbK0JNy0tsD5aJ+VA=
AllowedIPs = 10.6.6.1/24   # 此处表示只转发 10.6.6.1/24 网段的流量, 如果当前 客户端 是某个路由器或者网关时,其内网  访问 10.6.6.1/24 网段 的流量  可以直接进行转发
Endpoint = 服务器ip地址:50816
PersistentKeepalive = 25
# local 配置
[Interface]
Address = 10.6.6.3/32
PrivateKey = OLNYiWahc+R5k9iGWSu3VuCTubZ70BAxI1yhqnJ7cVU=

MTU = 1420
[Peer]
PublicKey = 21RiRj19ftOUd/HVT4tmJZRVRM3mku2mM5JnzVJvhEU=
PresharedKey = LxzOJt+IGMKv/KSsxWNtlX7LH5OylHp6NtjOo0w6F7g=
AllowedIPs = 10.6.6.3/32  # 表示 只路由自身的流量
Endpoint = 服务器ip地址:50816
PersistentKeepalive = 25
# hw-wg 的 openwrt 配置
[Interface]
Address = 10.6.6.5/32
PrivateKey = 6P5Qo7ws2l7JAbQ6GUgcc/FQUavq53Roevrhn62UGVA=


[Peer]
PublicKey = 21RiRj19ftOUd/HVT4tmJZRVRM3mku2mM5JnzVJvhEU=
PresharedKey = p7R5zpYovKMjCORA1CJiTZ9kPtRPZD0jrSs5V/s/zlo=
AllowedIPs = 10.6.6.0/24
Endpoint = hw的服务器地址:50816
PersistentKeepalive = 25
# 8.219.0.148 中的 custom 配置
[Interface]
Address = 10.8.8.2/32
PrivateKey = kPqsfIP5egtA/fQMlOHtfjJmjNK3pMlnJSTj66Of428=


[Peer]
PublicKey = miVKsQXzTmD9JKf3PvdtA0GI+fi0+UztMM0EkN3nUQA=
PresharedKey = f1nSRH+f1xdAajGAVuIAv9+ZW/RyBYR8zB3AsyPie8I=
AllowedIPs = 10.8.8.0/24
Endpoint = alqiyun的服务器地址:50816
PersistentKeepalive = 25
附件
作者:admin  创建时间:2023-02-13 14:40
最后编辑:admin  更新时间:2023-03-31 23:49