Changes for page Use Wireguard VPN in Dragino Gateways
Last modified by Xiaoye on 2024/04/19 19:52
Change comment:
Uploaded new attachment "image-20240103094049-2.png", version {1}
Summary
-
Page properties (2 modified, 0 added, 0 removed)
-
Attachments (0 modified, 3 added, 0 removed)
Details
- Page properties
-
- Author
-
... ... @@ -1,1 +1,1 @@ 1 -XWiki. Edwin1 +XWiki.Xiaoye - Content
-
... ... @@ -23,7 +23,7 @@ 23 23 24 24 **Video Instruction**: [[Install WireGuard Server in Windows>>https://www.youtube.com/watch?v=1AWVvW5oJtU]]. 25 25 26 -For other OS and method, please search google for more.26 +For other OS and methods, please search Google for more. 27 27 28 28 29 29 = 3. Configure Wireguard VPN on Gatewaythe LPS8N/DLOS8N/LG308N = ... ... @@ -34,105 +34,11 @@ 34 34 Due to the size of Wireguard packages. We didn't add it as a default feature of gateways. If the user wants to use Wireguard Please upgrade your gateway firmware with the special [[firmware>>https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/DLOS8/Firmware/Wireguard-firmware/]]. 35 35 36 36 37 - === 3.1.1 Configuration via command line===37 +[[image:image-20240102190036-1.png]] 38 38 39 -==== 3.1.1.1 Key Management ==== 40 40 41 41 42 - **#Generatekeys**41 +=== === 43 43 44 -(% class="box infomessage" %) 45 -((( 46 -umask go= 47 47 48 -wg genkey | tee wgserver.key | wg pubkey > wgserver.pub 49 - 50 -wg genkey | tee wgclient.key | wg pubkey > wgclient.pub 51 - 52 -wg genpsk > wgclient.psk 53 -))) 54 - 55 -[[image:image-20231110150147-1.png||height="82" width="566"]] 56 - 57 - 58 -==== 3.1.1.2 Firewall configuration ==== 59 - 60 - 61 -((( 62 -**#Configure firewall** 63 -))) 64 - 65 -(% class="box infomessage" %) 66 -((( 67 -uci del_list firewall.wan.network="vpn" 68 - 69 -uci add_list firewall.wan.network="vpn" 70 - 71 -uci commit firewall 72 -))) 73 - 74 -[[image:image-20231110151524-2.png]] 75 - 76 - 77 -((( 78 -**#Reload firewall** 79 -))) 80 - 81 -(% class="box infomessage" %) 82 -((( 83 -/etc/init.d/firewall 84 -))) 85 - 86 - 87 -==== 3.1.1.3 Network configuration ==== 88 - 89 - 90 -((( 91 -**#Configure network** 92 -))) 93 - 94 -(% class="box infomessage" %) 95 -((( 96 - uci -q delete network.vpn 97 - uci set network.vpn="interface" 98 - uci set network.vpn.proto="wireguard" 99 - uci set network.vpn.private_key="{VPN_KEY}" 100 - uci add_list network.vpn.addresses="{VPN_ADDRESS}" 101 -))) 102 - 103 -[[image:image-20231110152122-4.png]] 104 - 105 - 106 -((( 107 -**#Add VPN peers** 108 -))) 109 - 110 -(% class="box infomessage" %) 111 -((( 112 - uci -q delete network.wgserver 113 - uci set network.wgserver="wireguard_vpn" 114 - uci set network.wgserver.public_key="{VPN_PUB}" 115 - uci set network.wgserver.endpoint_host="{VPN_SERVER}" 116 - uci set network.wgserver.preshared_key="{VPN_PSK}" 117 - uci set network.wgserver.endpoint_port="{VPN_PORT}" 118 - uci set network.wgserver.persistent_keepalive="25" 119 - uci set network.wgserver.route_allowed_ips="1" 120 - uci add_list network.wgserver.allowed_ips="0.0.0.0/0" 121 - uci add_list network.wgserver.allowed_ips="::/0" 122 - uci commit network 123 -))) 124 - 125 -[[image:image-20231110152109-3.png]] 126 - 127 - 128 -((( 129 -**#reload network service** 130 -))) 131 - 132 -(% class="box infomessage" %) 133 -((( 134 -/etc/init.d/network reload 135 -))) 136 - 137 - 138 138
- image-20240102190036-1.png
-
- Author
-
... ... @@ -1,0 +1,1 @@ 1 +XWiki.Xiaoye - Size
-
... ... @@ -1,0 +1,1 @@ 1 +80.1 KB - Content
- image-20240103093849-1.png
-
- Author
-
... ... @@ -1,0 +1,1 @@ 1 +XWiki.Xiaoye - Size
-
... ... @@ -1,0 +1,1 @@ 1 +62.7 KB - Content
- image-20240103094049-2.png
-
- Author
-
... ... @@ -1,0 +1,1 @@ 1 +XWiki.Xiaoye - Size
-
... ... @@ -1,0 +1,1 @@ 1 +62.9 KB - Content