From 7a3fbbaee8b5d72659fbd4e8be0ee224e21553dd Mon Sep 17 00:00:00 2001 From: paulmataruso Date: Sat, 19 Oct 2024 18:45:02 +0000 Subject: [PATCH] First Upload --- docker-compose.yaml | 40 +++++++++++++++++++++++ docker-persist/wireguard/wg0.conf | 38 ++++++++++++++++++++++ docker-persist/wireguard/wg0.json | 53 +++++++++++++++++++++++++++++++ 3 files changed, 131 insertions(+) create mode 100644 docker-compose.yaml create mode 100644 docker-persist/wireguard/wg0.conf create mode 100644 docker-persist/wireguard/wg0.json diff --git a/docker-compose.yaml b/docker-compose.yaml new file mode 100644 index 0000000..876c41c --- /dev/null +++ b/docker-compose.yaml @@ -0,0 +1,40 @@ +services: + wg-easy: + environment: + # Change Language: + # (Supports: en, ua, ru, tr, no, pl, fr, de, ca, es, ko, vi, nl, is, pt, chs, cht, it, th, hi) + - LANG=en + # ⚠️ Required: + # Change this to your host's public address + - WG_HOST=wg.dothackinc.com + + # Optional: + - PASSWORD_HASH=$$2a$$12$$06eJr3wwwZnDwiOg7PN7oeGkmOeSCl/QIvHhSDeuwYAPCT3OX09cW + # - PORT=51821 + # - WG_PORT=51820 + # - WG_DEFAULT_ADDRESS=10.8.0.x + - WG_DEFAULT_DNS=172.16.0.50,172.16.0.38 + # - WG_MTU=1420 + - WG_ALLOWED_IPS=172.16.1.0/24,172.16.0.0/24,172.16.45.1/32 + # - WG_PERSISTENT_KEEPALIVE=25 + # - WG_PRE_UP=echo "Pre Up" > /etc/wireguard/pre-up.txt + # - WG_POST_UP=echo "Post Up" > /etc/wireguard/post-up.txt + # - WG_PRE_DOWN=echo "Pre Down" > /etc/wireguard/pre-down.txt + # - WG_POST_DOWN=echo "Post Down" > /etc/wireguard/post-down.txt + # - UI_TRAFFIC_STATS=true + # - UI_CHART_TYPE=0 # (0 Charts disabled, 1 # Line chart, 2 # Area chart, 3 # Bar chart) + + image: ghcr.io/wg-easy/wg-easy + container_name: wg-easy + volumes: + - ./docker-persist/wireguard:/etc/wireguard + ports: + - "0.0.0.0:51820:51820/udp" + - "0.0.0.0:51821:51821/tcp" + restart: unless-stopped + cap_add: + - NET_ADMIN + - SYS_MODULE + sysctls: + - net.ipv4.ip_forward=1 + - net.ipv4.conf.all.src_valid_mark=1 diff --git a/docker-persist/wireguard/wg0.conf b/docker-persist/wireguard/wg0.conf new file mode 100644 index 0000000..cc38937 --- /dev/null +++ b/docker-persist/wireguard/wg0.conf @@ -0,0 +1,38 @@ + +# Note: Do not edit this file directly. +# Your changes will be overwritten! + +# Server +[Interface] +PrivateKey = gNBIAHper++XlkumqibwRIzUXaesAwqKerbseqpci1g= +Address = 10.8.0.1/24 +ListenPort = 51820 +PreUp = +PostUp = iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE; iptables -A INPUT -p udp -m udp --dport 51820 -j ACCEPT; iptables -A FORWARD -i wg0 -j ACCEPT; iptables -A FORWARD -o wg0 -j ACCEPT; +PreDown = +PostDown = iptables -t nat -D POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE; iptables -D INPUT -p udp -m udp --dport 51820 -j ACCEPT; iptables -D FORWARD -i wg0 -j ACCEPT; iptables -D FORWARD -o wg0 -j ACCEPT; + + +# Client: Paul's Main Lenovo (d8a8b776-f879-48cf-a3f2-0518b3cea039) +[Peer] +PublicKey = Q6CtYn8h1qz8JbFOut+sjmqOET7TEUcD91xgctw6SH8= +PresharedKey = SSTLC5hUaiD4tyCHfZjrhNdR338Ckb0NrRl0bexuPcM= +AllowedIPs = 10.8.0.3/32 + +# Client: Paul iPad (1080b106-24db-4334-b729-694d4ef64c27) +[Peer] +PublicKey = ml7T8eYi8N/+/HlutYgEOcHDfkHSdzsJ8HNPw9w3lHo= +PresharedKey = fIaCeZ/eBd/xGtavK/h1HKsL4udTSHLemqKIaJz2ggQ= +AllowedIPs = 10.8.0.4/32 + +# Client: Pauls iPhone (030e18ac-e6d1-4ec7-8a0f-2a8bd92a47e2) +[Peer] +PublicKey = wAzylNlLUVO/iwOlLy0S3FfO1V2GZMv65/EocGpZxEk= +PresharedKey = k7/HmUKdugsC05V/YfIraSAP4fo5ucpAXEAlCyLiMlk= +AllowedIPs = 10.8.0.2/32 + +# Client: Lenovo T430 (5d1c3f02-4a67-4058-bd99-8945bbaf7948) +[Peer] +PublicKey = 7mCmzU0LdvmqFJhFJtAwcAI3iQDKjFSjOXwd6kh5qxM= +PresharedKey = 7hCUN4fYXYwLsmGNEsAayCJkfm1IIuSp1NKRJ1JRuVQ= +AllowedIPs = 10.8.0.5/32 \ No newline at end of file diff --git a/docker-persist/wireguard/wg0.json b/docker-persist/wireguard/wg0.json new file mode 100644 index 0000000..c3bbab8 --- /dev/null +++ b/docker-persist/wireguard/wg0.json @@ -0,0 +1,53 @@ +{ + "server": { + "privateKey": "gNBIAHper++XlkumqibwRIzUXaesAwqKerbseqpci1g=", + "publicKey": "pQIinUSjc4S0q6FSgLjmYcnRzxt1R4wjjxRYKoTlKCY=", + "address": "10.8.0.1" + }, + "clients": { + "d8a8b776-f879-48cf-a3f2-0518b3cea039": { + "id": "d8a8b776-f879-48cf-a3f2-0518b3cea039", + "name": "Paul's Main Lenovo", + "address": "10.8.0.3", + "privateKey": "uKIVTQTcXWLEfwWPfaCOCxqf92kNCQCd4vcFIixgeFg=", + "publicKey": "Q6CtYn8h1qz8JbFOut+sjmqOET7TEUcD91xgctw6SH8=", + "preSharedKey": "SSTLC5hUaiD4tyCHfZjrhNdR338Ckb0NrRl0bexuPcM=", + "createdAt": "2024-05-18T19:09:03.530Z", + "updatedAt": "2024-05-18T19:09:03.530Z", + "enabled": true + }, + "1080b106-24db-4334-b729-694d4ef64c27": { + "id": "1080b106-24db-4334-b729-694d4ef64c27", + "name": "Paul iPad", + "address": "10.8.0.4", + "privateKey": "qB1Xw6I0gA8j6EWbMLuYTE8jFqJ7QYUf2AiOm2EwT30=", + "publicKey": "ml7T8eYi8N/+/HlutYgEOcHDfkHSdzsJ8HNPw9w3lHo=", + "preSharedKey": "fIaCeZ/eBd/xGtavK/h1HKsL4udTSHLemqKIaJz2ggQ=", + "createdAt": "2024-05-19T03:28:23.075Z", + "updatedAt": "2024-05-19T03:28:23.075Z", + "enabled": true + }, + "030e18ac-e6d1-4ec7-8a0f-2a8bd92a47e2": { + "id": "030e18ac-e6d1-4ec7-8a0f-2a8bd92a47e2", + "name": "Pauls iPhone", + "address": "10.8.0.2", + "privateKey": "YFxkz4I/fWvFMAvMwGKpskd5016ijtJJHuSM3zAt5m0=", + "publicKey": "wAzylNlLUVO/iwOlLy0S3FfO1V2GZMv65/EocGpZxEk=", + "preSharedKey": "k7/HmUKdugsC05V/YfIraSAP4fo5ucpAXEAlCyLiMlk=", + "createdAt": "2024-07-01T02:26:29.582Z", + "updatedAt": "2024-07-01T02:26:29.582Z", + "enabled": true + }, + "5d1c3f02-4a67-4058-bd99-8945bbaf7948": { + "id": "5d1c3f02-4a67-4058-bd99-8945bbaf7948", + "name": "Lenovo T430", + "address": "10.8.0.5", + "privateKey": "sIhMu78kIYNrfOAmN1qxG1lCrUKtwXVbRKHXVjBsME0=", + "publicKey": "7mCmzU0LdvmqFJhFJtAwcAI3iQDKjFSjOXwd6kh5qxM=", + "preSharedKey": "7hCUN4fYXYwLsmGNEsAayCJkfm1IIuSp1NKRJ1JRuVQ=", + "createdAt": "2024-09-20T22:34:03.311Z", + "updatedAt": "2024-09-20T22:34:03.311Z", + "enabled": true + } + } +} \ No newline at end of file