Installation abschließen & Einrichtung

Needed Softwarepackages: wireguard; wireguard-tools; resolveconf;

apt-get install wireguard wireguard-tools resolvconf

Wenn "resolveconf" installiert ist, sind keine DNS Requests mehr möglich! Wenn nach der Installation von "resolv.conf" keine DNS-Auflösung mehr geht:

Lösung

#!/bin/bash
cd /etc/
test -f resolv.conf && rm resolv.conf
cat << EOF > resolv.conf
nameserver 10.53.0.10
nameserver 1.1.1.1
nameserver 1.0.0.1
search .

Line 5: Only on Alex´s Harvester Cluster

Add connection details of wireguard-settings from PC Wireguard Connection to /etc/wireguard/vpn.conf

Now it should be possible to ping your own vpn IP from Server -> PC

activate vpn	deactivate vpn
wg-quick up "Configname"	wg-quick down "Configname"

Now add Wireguardconf to autostart so its staring after an reboot!

systemctl enable wg-quick@"Configname"

Success!

To prevent to start wg-quick BEFORE ssh.service edit following

systemctl status wg-quick@"Configname" -> output loaded => (path/to/serviceconfig)

nano /path/to/wg-quick@"serviceconfig" #add "Before=mariadb.service redis-server.service ssh.service"

systemctl daemon-reload

Change Listenaddress to VPN IP in sshd_config and restart services

cd /etc/ssh/
nano sshd_config
systemctl restart ssh.service && restart sshd.service

Installation abschließen & Einrichtung

Keine Kommentare