Differences

This shows you the differences between two versions of the page.

--- documentation:examples:gre_ipsec_and_openvpn [2020/01/13 14:08] – [VPN with GRE, GIF, IPSec and OpenVPN] olivier
+++ documentation:examples:gre_ipsec_and_openvpn [2020/01/13 14:16] – [Testing] olivier
@@ Line 1161: / Line 1161: @@
 :52:40.744786 IP 10.0.34.4.1194 > 10.0.23.2.1194: UDP, length 22
 </code>
+===== Wireguard =====
+==== Key pairs generation ====
+The first step is to generate a couple of private and public keys on each wireguard endpoint.
+On VM2 and on VM4, generate the keys:
+<code>
+cd /usr/local/etc/wireguard
+wg genkey > private
+chmod 600 private
+wg pubkey < private > public
+</code>
+==== Router 2 ====
+Display router 2 private key, and router 4 public key.
+<code>
+cat > /usr/local/etc/wireguard/wg0.conf <<EOF
+[Interface]
+PrivateKey = 8Og1cCmvirK+zcGus/EyaA8aiFdzjjtS9GbuBa/bqFQ=
+ListenPort = 51820
+[Peer]
+PublicKey = FSvVqj2s1FZqsSIvPLrE1RRTgbaPLbfG87P36F21M1g=
+AllowedIPs = 10.0.45.0/24,,2001:db8:45::2/64
+Endpoint = 10.0.34.4:51820
+EOF
+sysrc wireguard_interfaces=wg0
+service wireguard enable
+service wireguard start
+</code>
+==== Router 4 ====
+Display router 4 private key, and router 2 public key.
+<code>
+cat > /usr/local/etc/wireguard/wg0.conf <<EOF
+[Interface]
+PrivateKey = ADfm6+sXZnoyDAkG/MXXy062pjSgh2GgfAIKwX+ewGg=
+ListenPort = 51820
+[Peer]
+PublicKey = gaQij176wrz3g+2RTJ/S1oEnc7rx2reU1Z0Thrv4oXc=
+AllowedIPs = 10.0.12.0/24,2001:db8:12::2/64
+Endpoint = 10.0.23.2:51820
+EOF
+sysrc wireguard_interfaces=wg0
+service wireguard enable
+service wireguard start
+</code>
+==== Testing ====
+Pinging VM5 from VM1: