Skip to Content
Last modified by Xiaoye on 2024/04/19 19:52
From version 8.2
edited by Xiaoling
on 2023/11/10 16:22
Change comment: There is no comment for this version
To version 4.1
edited by Xiaoye
on 2023/11/10 15:21
Change comment: Uploaded new attachment "image-20231110152109-3.png", version {1}

Summary

Details

Page properties
Author
... ... @@ -1,1 +1,1 @@
1 -XWiki.Xiaoling
1 +XWiki.Xiaoye
Content
... ... @@ -1,118 +1,0 @@
1 -(% class="wikigeneratedid" %)
2 -**Table of Contents:**
3 -
4 -{{toc/}}
5 -
6 -
7 -
8 -
9 -
10 -= How to configure Wireguard on the LPS8N/DLOS8N/LG308N =
11 -
12 -
13 -Due to the size of Wireguard packages. We didn't add it as a default feature of gateways. If the user wants to use Wireguard Please upgrade your gateway firmware with the special [[firmware>>https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/DLOS8/Firmware/Wireguard-firmware/]].
14 -
15 -
16 -== 1. Configuration via command line ==
17 -
18 -=== 1.1 Key Management ===
19 -
20 -
21 -**#Generate keys**
22 -
23 -(% class="box infomessage" %)
24 -(((
25 -umask go=
26 -
27 -wg genkey | tee wgserver.key | wg pubkey > wgserver.pub
28 -
29 -wg genkey | tee wgclient.key | wg pubkey > wgclient.pub
30 -
31 -wg genpsk > wgclient.psk
32 -)))
33 -
34 -[[image:image-20231110150147-1.png||height="82" width="566"]]
35 -
36 -
37 -=== 1.2 Firewall configuration ===
38 -
39 -
40 -(((
41 -**#Configure firewall**
42 -)))
43 -
44 -(% class="box infomessage" %)
45 -(((
46 -uci del_list firewall.wan.network="vpn"
47 -
48 -uci add_list firewall.wan.network="vpn"
49 -
50 -uci commit firewall
51 -)))
52 -
53 -[[image:image-20231110151524-2.png]]
54 -
55 -
56 -(((
57 -**#Reload firewall**
58 -)))
59 -
60 -(% class="box infomessage" %)
61 -(((
62 -/etc/init.d/firewall
63 -)))
64 -
65 -
66 -=== 1.3 Network configuration ===
67 -
68 -
69 -(((
70 -**#Configure network**
71 -)))
72 -
73 -(% class="box infomessage" %)
74 -(((
75 - uci -q delete network.vpn
76 - uci set network.vpn="interface"
77 - uci set network.vpn.proto="wireguard"
78 - uci set network.vpn.private_key="{VPN_KEY}"
79 - uci add_list network.vpn.addresses="{VPN_ADDRESS}"
80 -)))
81 -
82 -[[image:image-20231110152122-4.png]]
83 -
84 -
85 -(((
86 -#Add VPN peers
87 -)))
88 -
89 -(% class="box infomessage" %)
90 -(((
91 - uci -q delete network.wgserver
92 - uci set network.wgserver="wireguard_vpn"
93 - uci set network.wgserver.public_key="{VPN_PUB}"
94 - uci set network.wgserver.endpoint_host="{VPN_SERVER}"
95 - uci set network.wgserver.preshared_key="{VPN_PSK}"
96 - uci set network.wgserver.endpoint_port="{VPN_PORT}"
97 - uci set network.wgserver.persistent_keepalive="25"
98 - uci set network.wgserver.route_allowed_ips="1"
99 - uci add_list network.wgserver.allowed_ips="0.0.0.0/0"
100 - uci add_list network.wgserver.allowed_ips="::/0"
101 - uci commit network
102 -)))
103 -
104 -[[image:image-20231110152109-3.png]]
105 -
106 -
107 -(((
108 -#reload network service
109 -)))
110 -
111 -(% class="box infomessage" %)
112 -(((
113 -/etc/init.d/network reload
114 -)))
115 -
116 -
117 -
118 -
image-20231110152122-4.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoye
Size
... ... @@ -1,1 +1,0 @@
1 -33.0 KB
Content