wireguard-docs/example-internet-browsing-vpn/server/setup.sh

#!/bin/bash

# install wireguard
add-apt-repository ppa:wireguard/wireguard
apt update
apt install wireguard

# to enable kernel relaying/forwarding ability on bounce servers
echo "net.ipv4.ip_forward = 1" >>/etc/sysctl.conf
echo "net.ipv4.conf.all.proxy_arp = 1" >>/etc/sysctl.conf
sysctl -p /etc/sysctl.conf

# to add iptables forwarding rules on bounce servers
iptables -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -i wg0 -o wg0 -m conntrack --ctstate NEW -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.0.44.0/24 -o eth0 -j MASQUERADE
add full example wip 2019-05-28 09:33:04 +00:00			`#!/bin/bash`

			`# install wireguard`
			`add-apt-repository ppa:wireguard/wireguard`
			`apt update`
			`apt install wireguard`

			`# to enable kernel relaying/forwarding ability on bounce servers`
Fixed rest missing values 2021-03-28 16:13:24 +00:00			`echo "net.ipv4.ip_forward = 1" >>/etc/sysctl.conf`
			`echo "net.ipv4.conf.all.proxy_arp = 1" >>/etc/sysctl.conf`
			`sysctl -p /etc/sysctl.conf`
add full example wip 2019-05-28 09:33:04 +00:00
			`# to add iptables forwarding rules on bounce servers`
			`iptables -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT`
			`iptables -A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT`
			`iptables -A FORWARD -i wg0 -o wg0 -m conntrack --ctstate NEW -j ACCEPT`
rename examples 2019-06-24 10:11:21 +00:00			`iptables -t nat -A POSTROUTING -s 10.0.44.0/24 -o eth0 -j MASQUERADE`