使用wireguard连接云服务器和本地主机

1.云服务器安装wireguard

1.安装wireguard
apt update
apt install -y wireguard

2.生成密钥
sudo -i
umask 077
wg genkey > /etc/wireguard/server.key
wg pubkey < /etc/wireguard/server.key > /etc/wireguard/server.pub
cat /etc/wireguard/server.pub

3.云主机文件配置
cat >/etc/wireguard/wg0.conf <<'EOF'
[Interface]
Address = 10.66.66.1/24
ListenPort = 51820
PrivateKey = /etc/wireguard/server.key 的内容
[Peer]
PublicKey = 本地主机 client.pub
AllowedIPs = 10.66.66.2/32
EOF
chmod 600 /etc/wireguard/wg0.conf

2.本地主机安装wireguard

1.安装wireguard
dnf install -y wireguard-tools

2.生成密钥
sudo -i
umask 077
wg genkey > /etc/wireguard/client.key
wg pubkey < /etc/wireguard/client.key > /etc/wireguard/client.pub
cat /etc/wireguard/client.pub

3.本地主机文件配置
cat >/etc/wireguard/wg0.conf <<'EOF'
[Interface]
Address = 10.66.66.2/24
PrivateKey = /etc/wireguard/client.key 的内容
[Peer]
PublicKey = 云主机 /etc/wireguard/server.pub 的内容
Endpoint = 120.53.234.35:51820
AllowedIPs = 10.66.66.1/32
PersistentKeepalive = 25
EOF
chmod 600 /etc/wireguard/wg0.conf

3.云主机放开端口

ufw enable
ufw allow 51820/udp
ufw reload
ufw status

4.云主机和本地主机均开启wg服务

systemctl enable --now wg-quick@wg0
systemctl status wg-quick@wg0 --no-pager
wg

5.测试互通

1.云主机连通本地主机
ping -c 4 10.66.66.2

2.本地主机连通云主机
ping -c 4 10.66.66.1

posted @ 2026-04-02 14:18 岐岐卡卡西阅读(0) 评论(0) 收藏举报

刷新页面返回顶部

岐岐卡卡西

编程和写作是提炼思维，重构逻辑，升华思想的过程

使用wireguard连接云服务器和本地主机

公告