tiyn/wiki
1
0
Fork 0
mirror of https://github.com/tiyn/wiki.git synced 2025-04-19 22:17:45 +02:00
Code Issues Projects Releases Wiki Activity

Compare commits

base: tiyn:16919db32aa0595f1d5ecf94ca9377b61e647498
Branches Tags
tiyn:master
..
compare: tiyn:911005840b598ec22324225bf8a815d607efb3e8
Branches Tags
tiyn:master

No commits in common. "16919db32aa0595f1d5ecf94ca9377b61e647498" and "911005840b598ec22324225bf8a815d607efb3e8" have entirely different histories.
16919db32a ... 911005840b

1 changed files with 9 additions and 33 deletions
Show Stats Expand all files Collapse all files

42
wiki/vpn.md
View File

@ -11,25 +11,25 @@ VPNs feature a server and a client side.
[OpenVPN](https://openvpn.net) is a free software to create a VPN via an [OpenVPN](https://openvpn.net) is a free software to create a VPN via an
encrypted TLS connection. encrypted TLS connection.
### OVPN Set up ### Set up (OVPN)
In the following sections the different set ups of OpenVPN usages are described. In the following sections the different set ups of OpenVPN usages are described.
#### OVPN Server #### Server (OVPN)
The software can be set up via [Docker](/wiki/docker.md) with the The software can be set up via [Docker](/wiki/docker.md) with the
[kylemanna image](./docker-images/kylemanna_-_openvpn.md). [kylemanna image](./docker-images/kylemanna_-_openvpn.md).
Additionally to this a client is needed on the system that need access to the Additionally to this a client is needed on the system that need access to the
server software. server software.
#### OVPN Client #### Client (OVPN)
OpenVPN clients can be found for many devices. OpenVPN clients can be found for many devices.
For Android for example there is For Android for example there is
[OpenVPN for Android in the F-Droid store](https://f-droid.org/de/packages/de.blinkt.openvpn/). [OpenVPN for Android in the F-Droid store](https://f-droid.org/de/packages/de.blinkt.openvpn/).
For most linux distributions there is a package called `openvpn`. For most linux distributions there is a package called `openvpn`.
#### OVPN Proxy #### Proxy (OVPN)
For OpenVPN a proxy acts as an imntermediary between the system communicating For OpenVPN a proxy acts as an imntermediary between the system communicating
with the proxy and the OpenVPN server. with the proxy and the OpenVPN server.
@ -45,25 +45,25 @@ This section including its subsections - especially the [usage](#usage-wg) is
based on an extensive guide on WireGuard by based on an extensive guide on WireGuard by
[DigitalOcean](https://www.digitalocean.com/community/tutorials/how-to-set-up-wireguard-on-ubuntu-20-04#step-9-connecting-the-wireguard-peer-to-the-tunnel). [DigitalOcean](https://www.digitalocean.com/community/tutorials/how-to-set-up-wireguard-on-ubuntu-20-04#step-9-connecting-the-wireguard-peer-to-the-tunnel).
### WG Setup ### Setup (WG)
In the following sections the different set ups of WireGuard usages are described. In the following sections the different set ups of WireGuard usages are described.
#### WG Server #### Server (WG)
The software can be set up via [Docker](/wiki/docker.md) with the The software can be set up via [Docker](/wiki/docker.md) with the
[linuxserver image](/wiki/docker-images/linuxserver_-_wireguard.md). [linuxserver image](/wiki/docker-images/linuxserver_-_wireguard.md).
Additionally to this a [client](#client-wg) is needed on the system that Additionally to this a [client](#client-wg) is needed on the system that
accesses the server. accesses the server.
#### WG Client #### Client (WG)
WireGuard clients can be found for many devices. WireGuard clients can be found for many devices.
For Android for example there is For Android for example there is
[Wireguard for Android in the F-Droid store](https://f-droid.org/de/packages/com.wireguard.android/). [Wireguard for Android in the F-Droid store](https://f-droid.org/de/packages/com.wireguard.android/).
For most linux distributions there is a package called `wireguard-tools`. For most linux distributions there is a package called `wireguard-tools`.
### WG Usage ### Usage (WG)
Wireguard clients connect to servers by using a `.conf` file. Wireguard clients connect to servers by using a `.conf` file.
For mobile devices often times a QR-code can also be used. For mobile devices often times a QR-code can also be used.
@ -84,31 +84,7 @@ should be used.
Alternatively also other names not including `wg` can be used. Alternatively also other names not including `wg` can be used.
The term `wg0` the incremented version of it has to be changed accordingly then. The term `wg0` the incremented version of it has to be changed accordingly then.
#### Setting Up Local DNS ### Troubleshooting (WG)
This section focusses on the usage of a [local DNS](/wiki/dns.md) like
[bind9](/wiki/bind.md#configure-local-dns-server-with-forwarding).
This can be especially useful for using
[local domains](/wiki/bind.md#configure-local-domains).
The following guide is based on a comments by the Reddit users
[orthecreedence and rptb1](https://www.reddit.com/r/WireGuard/comments/cmhap6/use_both_wireguard_and_local_dns_servers/).
To set up the usage of a local DNS the WireGuard configuration file needs to be
changed.
The following lines have to be appended under the `[Interface]` section and the
DNS IP address (in this case `192.168.178.1`) has to be changed as needed.
`wg0` is the name of the configuration file (see [the usage section](#wg-usage))
for reference.
```txt
PostUp = resolvectl dns wg0 192.168.178.1
PostDown = resolvconf -d %i -f
```
The `PostUp` line sets up the DNS while the `PostDown` line shuts it down after
wireguard is closed.
### WG Troubleshooting
This section addresses various errors and ways how to troubleshoot them. This section addresses various errors and ways how to troubleshoot them.