Last modified by Xiaoye on 2024/04/19 19:52
<
From version < 23.1 >
edited by Xiaoye
on 2024/01/03 10:02
To version < 15.1 >
edited by Xiaoye
on 2024/01/02 19:00
>
Change comment: Uploaded new attachment "image-20240102190036-1.png", version {1}

Summary

Details

Page properties
Content
... ... @@ -23,7 +23,7 @@
23 23  
24 24  **Video Instruction**: [[Install WireGuard Server in Windows>>https://www.youtube.com/watch?v=1AWVvW5oJtU]].
25 25  
26 -For other OS and methods, please search Google for more.
26 +For other OS and method, please search google for more.
27 27  
28 28  
29 29  = 3. Configure Wireguard VPN on Gatewaythe LPS8N/DLOS8N/LG308N =
... ... @@ -34,51 +34,105 @@
34 34  Due to the size of Wireguard packages. We didn't add it as a default feature of gateways. If the user wants to use Wireguard Please upgrade your gateway firmware with the special [[firmware>>https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/DLOS8/Firmware/Wireguard-firmware/]].
35 35  
36 36  
37 -=== 1.) Preparation ===
37 +=== 3.1.1 Configuration via command line ===
38 38  
39 -* **Prepare WireGuard server public key, IP address, port, and peer address.**
39 +==== 3.1.1.1 Key Management ====
40 40  
41 41  
42 +**#Generate keys**
42 42  
43 -=== 2.) Steup WireGuard ===
44 +(% class="box infomessage" %)
45 +(((
46 +umask go=
44 44  
48 +wg genkey | tee wgserver.key | wg pubkey > wgserver.pub
45 45  
46 -* **Accessing the gateway's WireGuard page**
50 +wg genkey | tee wgclient.key | wg pubkey > wgclient.pub
47 47  
48 -[[image:image-20240103094049-2.png||height="437" width="915"]]
52 +wg genpsk > wgclient.psk
53 +)))
49 49  
55 +[[image:image-20231110150147-1.png||height="82" width="566"]]
50 50  
51 -* **Add the gateway's public key to the server and assign the peer address.**
52 52  
53 -[[image:image-20240103094832-3.png||height="545" width="912"]]
58 +==== 3.1.1.2 Firewall configuration ====
54 54  
55 55  
56 -* **Fill in the parameters of the WireGuard server**
61 +(((
62 +**#Configure firewall**
63 +)))
57 57  
58 -[[image:image-20240103095200-4.png||height="642" width="929"]]
65 +(% class="box infomessage" %)
66 +(((
67 +uci del_list firewall.wan.network="vpn"
59 59  
60 -=== 3. Testing ===
69 +uci add_list firewall.wan.network="vpn"
61 61  
71 +uci commit firewall
72 +)))
62 62  
63 -* **Ping Client Peer Address**
74 +[[image:image-20231110151524-2.png]]
64 64  
65 -[[image:image-20240103095549-5.png||height="405" width="928"]]
66 66  
77 +(((
78 +**#Reload firewall**
79 +)))
67 67  
68 -* **Access Gateway WebUI via Client Peer Address**
81 +(% class="box infomessage" %)
82 +(((
83 +/etc/init.d/firewall
84 +)))
69 69  
70 -[[image:image-20240103095756-6.png||height="488" width="933"]]
71 71  
87 +==== 3.1.1.3 Network configuration ====
72 72  
73 -=== 4. Troubleshooting ===
74 74  
75 -* **Unable to ping client**
90 +(((
91 +**#Configure network**
92 +)))
76 76  
77 - Please check if the client and server are on the same Network
94 +(% class="box infomessage" %)
95 +(((
96 + uci -q delete network.vpn
97 + uci set network.vpn="interface"
98 + uci set network.vpn.proto="wireguard"
99 + uci set network.vpn.private_key="{VPN_KEY}"
100 + uci add_list network.vpn.addresses="{VPN_ADDRESS}"
101 +)))
78 78  
103 +[[image:image-20231110152122-4.png]]
79 79  
80 80  
81 -=== ===
106 +(((
107 +**#Add VPN peers**
108 +)))
82 82  
110 +(% class="box infomessage" %)
111 +(((
112 + uci -q delete network.wgserver
113 + uci set network.wgserver="wireguard_vpn"
114 + uci set network.wgserver.public_key="{VPN_PUB}"
115 + uci set network.wgserver.endpoint_host="{VPN_SERVER}"
116 + uci set network.wgserver.preshared_key="{VPN_PSK}"
117 + uci set network.wgserver.endpoint_port="{VPN_PORT}"
118 + uci set network.wgserver.persistent_keepalive="25"
119 + uci set network.wgserver.route_allowed_ips="1"
120 + uci add_list network.wgserver.allowed_ips="0.0.0.0/0"
121 + uci add_list network.wgserver.allowed_ips="::/0"
122 + uci commit network
123 +)))
83 83  
125 +[[image:image-20231110152109-3.png]]
126 +
127 +
128 +(((
129 +**#reload network service**
130 +)))
131 +
132 +(% class="box infomessage" %)
133 +(((
134 +/etc/init.d/network reload
135 +)))
136 +
137 +
84 84  
image-20240103093849-1.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -62.7 KB
Content
image-20240103094049-2.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -62.9 KB
Content
image-20240103094832-3.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -100.1 KB
Content
image-20240103095200-4.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -82.2 KB
Content
image-20240103095549-5.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -31.5 KB
Content
image-20240103095756-6.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -562.0 KB
Content

Applications

Navigation

Copyright ©2010-2024 Dragino Technology Co., LTD. All rights reserved
Dragino Wiki v2.0