blob: 10e3bc99f7345052b3dbce8717b2760d1b429ad6 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
[Interface]
PrivateKey = {{ private_key }}
Address = {{ wg_subnet_prefix }}.1/24
ListenPort = {{ wg_port }}
PostUp = sysctl -w net.ipv4.ip_forward=1
PostUp = iptables -A FORWARD -i wg0 -o vmbr0 -j ACCEPT
PostUp = iptables -A FORWARD -i vmbr0 -o wg0 -j ACCEPT
PostUp = iptables -A FORWARD -i wg0 -o vmbr1 -j ACCEPT
PostUp = iptables -A FORWARD -i vmbr1 -o wg0 -j ACCEPT
PostUp = iptables -t nat -A POSTROUTING -s {{ wg_subnet }} -o vmbr0 -j MASQUERADE
PostUp = iptables -t nat -A POSTROUTING -s {{ wg_subnet }} -o vmbr1 -j MASQUERADE
PostDown = sysctl -w net.ipv4.ip_forward=0
PostDown = iptables -D FORWARD -i wg0 -o vmbr0 -j ACCEPT
PostDown = iptables -D FORWARD -i vmbr0 -o wg0 -j ACCEPT
PostDown = iptables -D FORWARD -i wg0 -o vmbr1 -j ACCEPT
PostDown = iptables -D FORWARD -i vmbr1 -o wg0 -j ACCEPT
PostDown = iptables -t nat -D POSTROUTING -s {{ wg_subnet }} -o vmbr0 -j MASQUERADE
PostDown = iptables -t nat -D POSTROUTING -s {{ wg_subnet }} -o vmbr1 -j MASQUERADE
|