Housekeeping
This commit is contained in:
parent
bd67283438
commit
b6d9e24ae3
114 changed files with 0 additions and 1432 deletions
|
|
@ -1,10 +0,0 @@
|
||||||
[RB5009-WG1]
|
|
||||||
RtrInterface=WG1
|
|
||||||
Rtr_Addr_Admin=10.1.8.99
|
|
||||||
Rtr_Addr_Public=205.151.68.129
|
|
||||||
Rrt_Port=13243
|
|
||||||
Rtr_Addr_Private=10.1.4.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=bTatsa66Ggasasa6666=
|
|
||||||
Rtr_DNS=1.1.1.1,1.0.0.1
|
|
||||||
Rtr_Route_Subnet=10.0.0.0/8
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.1.4.1/32 disabled=no name="marc" interface=WG1 \
|
|
||||||
preshared-key="aeN5oZSTW//CPRuZaBj16GTwx7+ktpvph+thrFY/WQc=" public-key="ztXlaxlZWA4oZxSCaQsN/8RXqahEeF4BehMjfAFbLVk="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = 2OchuWPpq3g8dXCoo2uufnmU1dpcd8WfgS4/7vI7tUQ=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.4.1/32
|
|
||||||
DNS = 1.1.1.1,1.0.0.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = bTatsa66Ggasasa6666=
|
|
||||||
PresharedKey = aeN5oZSTW//CPRuZaBj16GTwx7+ktpvph+thrFY/WQc=
|
|
||||||
AllowedIPs = 10.0.0.0/8
|
|
||||||
Endpoint = 205.151.68.129:13243
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.3 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.1.4.2/32 disabled=no name="guy" interface=WG1 \
|
|
||||||
preshared-key="JVdiKw9rvvz/HqTdHG6oxJBkduUe3r7DWgqDO0tHMkw=" public-key="eeYn9g9ayNJoEkYH4HrXFMcGDU0uUHLXF2ZopybCAFg="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = ABcaGRdchXN2+23PoSe8d7ojH4WhT4JEsZLRV3Jt1lo=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.4.2/32
|
|
||||||
DNS = 1.1.1.1,1.0.0.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = bTatsa66Ggasasa6666=
|
|
||||||
PresharedKey = JVdiKw9rvvz/HqTdHG6oxJBkduUe3r7DWgqDO0tHMkw=
|
|
||||||
AllowedIPs = 10.0.0.0/8
|
|
||||||
Endpoint = 205.151.68.129:13243
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.3 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
[Interface]
|
|
||||||
ListenPort = 13231
|
|
||||||
PrivateKey = oIdmd/wFdL54lgkkThbIcDAeg9nKmS5wxH4fLBJbwEo=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
mCscj1wPL4+kGrDMAKY3Ek8drGvxcgOlfudGAq9j+Vo=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
pWs3b9kfSZ+Uvg7Q9tYT52Lqxh7OEbOhkzmvE0NT/GM=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
GPBSyPyU06/jsowN9ScTpXDkMAzrGxKB217gVWcSVng=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
+tJsNqiNzwJ7PCLRvF83olIffVq9FAWSvOlYC7wbUp0=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
rtbXn9kJ32AqTbOeNcQjWT31UW+508ENhP1+Whez5TQ=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
APeJ2lVKE90EUHsDO+bYC5OAnpeUATCeGZWDL9K0dVM=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
isW7BmJAwEq6B2PeDbG4sN8z/dg2zfuhuLdPQY3WovU=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
GkRup6bdiXqb8GOaytLBQ1tFcQJ+SEu+KgkQlR17oE4=
|
|
||||||
|
|
@ -1,10 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = GPBSyPyU06/jsowN9ScTpXDkMAzrGxKB217gVWcSVng=
|
|
||||||
Address = 172.16.28.1/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = rtbXn9kJ32AqTbOeNcQjWT31UW+508ENhP1+Whez5TQ=
|
|
||||||
PresharedKey = +tJsNqiNzwJ7PCLRvF83olIffVq9FAWSvOlYC7wbUp0=
|
|
||||||
Endpoint = 172.16.24.1:13239
|
|
||||||
AllowedIPs = 0.0.0.0/0,::/0
|
|
||||||
|
|
@ -1,10 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = APeJ2lVKE90EUHsDO+bYC5OAnpeUATCeGZWDL9K0dVM=
|
|
||||||
Address = 172.16.28.2/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = 3ZnjnM9d/TL2MoNnEgNRlDztYEhHLNjb8EXai9utzCk=
|
|
||||||
PresharedKey = isW7BmJAwEq6B2PeDbG4sN8z/dg2zfuhuLdPQY3WovU=
|
|
||||||
Endpoint = 192.168.88.168:13239
|
|
||||||
AllowedIPs = 0.0.0.0/0
|
|
||||||
|
|
@ -1,316 +0,0 @@
|
||||||
#!/bin/bash
|
|
||||||
|
|
||||||
|
|
||||||
#=================== Environment ===============================================
|
|
||||||
#
|
|
||||||
ScriptName=$(basename "$0")
|
|
||||||
SshUser=ansible
|
|
||||||
#SshKey="/home/wireguard/.ssh/ansible_evoq_rsa"
|
|
||||||
SshKey="/home/boig01/.ssh/ansible_evoq_rsa"
|
|
||||||
#BaseDir="/home/wireguard"
|
|
||||||
BaseDir="/dev/shm"
|
|
||||||
CCR1=10.1.8.11
|
|
||||||
CCR2=10.1.8.12
|
|
||||||
Version=240222_1842
|
|
||||||
CORP="EVOQ"
|
|
||||||
TmpUserList=$(mktemp -p /dev/shm)
|
|
||||||
|
|
||||||
# Wireguard For Routers
|
|
||||||
RtrCCR1Int=WG-Routers
|
|
||||||
RtrCCR1PubKey="9au45IDNJhHDNtN+LIpJDyMFTEYdN9WOSSHEJS8WRmw="
|
|
||||||
RtrCCR1Prefix="10.1.32"
|
|
||||||
RtrCCR1Address="10.1.32.254/24"
|
|
||||||
RtrCCR1Port=13232
|
|
||||||
WgRtrDir="${BaseDir}/routers"
|
|
||||||
|
|
||||||
# Wireguard For Users
|
|
||||||
UsrCCR1Int=WG-Users
|
|
||||||
UsrCCR1PubKey="EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY="
|
|
||||||
UsrCCR1Prefix="10.1.33"
|
|
||||||
UsrCCR1Address="10.1.33.254/24"
|
|
||||||
UsrCCR1Port=13233
|
|
||||||
WgUsrDir="${BaseDir}/users"
|
|
||||||
|
|
||||||
YELLOW='\033[0;33m'
|
|
||||||
GREEN='\033[0;32m'
|
|
||||||
RED='\033[0;31m'
|
|
||||||
BLUE='\033[0;34m'
|
|
||||||
NC='\033[0m' # No Color
|
|
||||||
|
|
||||||
|
|
||||||
# Create paths if not there
|
|
||||||
[ ! -d "$WgRtrDir" ] && mkdir -p "${WgRtrDir}"
|
|
||||||
[ ! -d "$WgUsrDir" ] && mkdir -p "${WgUsrDir}"
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function Info =============================================
|
|
||||||
#
|
|
||||||
# Avec date / time prefix
|
|
||||||
#
|
|
||||||
Info() { printf "${GREEN} %s ${NC} %s\n" "$( date +%F_%T )" "$*" >&2; } # send to stderr
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function Message ==========================================
|
|
||||||
#
|
|
||||||
Message() { printf "${GREEN}%s ${NC}\n" "$*" ;} # send to stderr
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function Help =============================================
|
|
||||||
#
|
|
||||||
function Help ()
|
|
||||||
{
|
|
||||||
echo -e "
|
|
||||||
usage: $ScriptName [options]
|
|
||||||
|
|
||||||
-l List WireGuard clients on CCR1
|
|
||||||
-h This help
|
|
||||||
|
|
||||||
"
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function addCCR1 ==========================================
|
|
||||||
#
|
|
||||||
function addCCR1() {
|
|
||||||
local Router="$1"
|
|
||||||
echo -e "\nAdding ${Router} Wireguard account to CCR1..."
|
|
||||||
ssh -i ${SSHKey} ansible@${CCR1} "/ppp secret add local-address=10.1.31.254 name=${Router} password=${L2TPPass} remote-address=${CCRSideIP} routes=\"${ip_Subnet} $CCRSideIP 1\" service=l2tp"
|
|
||||||
|
|
||||||
if [ $? = 0 ]
|
|
||||||
then
|
|
||||||
echo "${Router} Wireguard account successfully added to CCR1"
|
|
||||||
else
|
|
||||||
echo "Failed to add ${Router} Wireguard account to CCR1"
|
|
||||||
fi
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function newClient =======================================
|
|
||||||
#
|
|
||||||
function newClient() {
|
|
||||||
ENDPOINT="${SERVER_PUB_IP}:${SERVER_PORT}"
|
|
||||||
|
|
||||||
echo ""
|
|
||||||
echo "Tell me a name for the client."
|
|
||||||
echo "The name must consist of alphanumeric character. It may also include an underscore or a dash and can't exceed 15 chars."
|
|
||||||
|
|
||||||
until [[ ${CLIENT_NAME} =~ ^[a-zA-Z0-9_-]+$ && ${CLIENT_EXISTS} == '0' && ${#CLIENT_NAME} -lt 16 ]]; do
|
|
||||||
read -rp "Client name: " -e CLIENT_NAME
|
|
||||||
CLIENT_EXISTS=$(grep -c -E "^### Client ${CLIENT_NAME}\$" "$(pwd)/wireguard/${SERVER_WG_NIC}/${SERVER_WG_NIC}.conf")
|
|
||||||
|
|
||||||
if [[ ${CLIENT_EXISTS} == '1' ]]; then
|
|
||||||
echo ""
|
|
||||||
echo "A client with the specified name was already created, please choose another name."
|
|
||||||
echo ""
|
|
||||||
fi
|
|
||||||
done
|
|
||||||
|
|
||||||
for DOT_IP in {2..254}; do
|
|
||||||
DOT_EXISTS=$(grep -c "${SERVER_WG_IPV4::-1}${DOT_IP}" "$(pwd)/wireguard/${SERVER_WG_NIC}/${SERVER_WG_NIC}.conf")
|
|
||||||
if [[ ${DOT_EXISTS} == '0' ]]; then
|
|
||||||
break
|
|
||||||
fi
|
|
||||||
done
|
|
||||||
|
|
||||||
if [[ ${DOT_EXISTS} == '1' ]]; then
|
|
||||||
echo ""
|
|
||||||
echo "The subnet configured supports only 253 clients."
|
|
||||||
exit 99
|
|
||||||
fi
|
|
||||||
|
|
||||||
BASE_IP=$(echo "$SERVER_WG_IPV4" | awk -F '.' '{ print $1"."$2"."$3 }')
|
|
||||||
until [[ ${IPV4_EXISTS} == '0' ]]; do
|
|
||||||
read -rp "Client's WireGuard IPv4: ${BASE_IP}." -e -i "${DOT_IP}" DOT_IP
|
|
||||||
CLIENT_WG_IPV4="${BASE_IP}.${DOT_IP}"
|
|
||||||
IPV4_EXISTS=$(grep -c "$CLIENT_WG_IPV4/24" "$(pwd)/wireguard/${SERVER_WG_NIC}/${SERVER_WG_NIC}.conf")
|
|
||||||
|
|
||||||
if [[ ${IPV4_EXISTS} == '1' ]]; then
|
|
||||||
echo ""
|
|
||||||
echo "A client with the specified IPv4 was already created, please choose another IPv4."
|
|
||||||
echo ""
|
|
||||||
fi
|
|
||||||
done
|
|
||||||
|
|
||||||
BASE_IP=$(echo "$SERVER_WG_IPV6" | awk -F '::' '{ print $1 }')
|
|
||||||
until [[ ${IPV6_EXISTS} == '0' ]]; do
|
|
||||||
read -rp "Client's WireGuard IPv6: ${BASE_IP}::" -e -i "${DOT_IP}" DOT_IP
|
|
||||||
CLIENT_WG_IPV6="${BASE_IP}::${DOT_IP}"
|
|
||||||
IPV6_EXISTS=$(grep -c "${CLIENT_WG_IPV6}/64" "$(pwd)/wireguard/${SERVER_WG_NIC}/${SERVER_WG_NIC}.conf")
|
|
||||||
|
|
||||||
if [[ ${IPV6_EXISTS} == '1' ]]; then
|
|
||||||
echo ""
|
|
||||||
echo "A client with the specified IPv6 was already created, please choose another IPv6."
|
|
||||||
echo ""
|
|
||||||
fi
|
|
||||||
done
|
|
||||||
|
|
||||||
# Generate key pair for the client
|
|
||||||
CLIENT_PRIV_KEY=$(wg genkey)
|
|
||||||
CLIENT_PUB_KEY=$(echo "${CLIENT_PRIV_KEY}" | wg pubkey)
|
|
||||||
CLIENT_PRE_SHARED_KEY=$(wg genpsk)
|
|
||||||
|
|
||||||
mkdir -p "$(pwd)/wireguard/${SERVER_WG_NIC}/client/${CLIENT_NAME}" >/dev/null 2>&1
|
|
||||||
HOME_DIR="$(pwd)/wireguard/${SERVER_WG_NIC}/client/${CLIENT_NAME}"
|
|
||||||
|
|
||||||
# Create client file and add the server as a peer
|
|
||||||
echo "[Interface]
|
|
||||||
PrivateKey = ${CLIENT_PRIV_KEY}
|
|
||||||
Address = ${CLIENT_WG_IPV4}/32,${CLIENT_WG_IPV6}/128
|
|
||||||
DNS = ${CLIENT_DNS_1},${CLIENT_DNS_2}
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ${SERVER_PUB_KEY}
|
|
||||||
PresharedKey = ${CLIENT_PRE_SHARED_KEY}
|
|
||||||
Endpoint = ${ENDPOINT}
|
|
||||||
AllowedIPs = 0.0.0.0/0,::/0" >>"${HOME_DIR}/${SERVER_WG_NIC}-client-${CLIENT_NAME}.conf"
|
|
||||||
|
|
||||||
# Add the client as a peer to the MikroTik (to client folder)
|
|
||||||
echo "# WireGuard client peer configure
|
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=${CLIENT_WG_IPV4}/32 comment=\\
|
|
||||||
${SERVER_WG_NIC}-client-${CLIENT_NAME} interface=${SERVER_WG_NIC} \\
|
|
||||||
preshared-key=\"${CLIENT_PRE_SHARED_KEY}\" public-key=\\
|
|
||||||
\"${CLIENT_PUB_KEY}\"
|
|
||||||
" >"${HOME_DIR}/mikrotik-peer-${SERVER_WG_NIC}-client-${CLIENT_NAME}.rsc"
|
|
||||||
|
|
||||||
# Add the client as a peer to the MikroTik
|
|
||||||
echo "# WireGuard client peer configure
|
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=${CLIENT_WG_IPV4}/32 comment=\\
|
|
||||||
${SERVER_WG_NIC}-client-${CLIENT_NAME} interface=${SERVER_WG_NIC} \\
|
|
||||||
preshared-key=\"${CLIENT_PRE_SHARED_KEY}\" public-key=\\
|
|
||||||
\"${CLIENT_PUB_KEY}\"
|
|
||||||
" >> "$(pwd)/wireguard/${SERVER_WG_NIC}/mikrotik/${SERVER_WG_NIC}.rsc"
|
|
||||||
|
|
||||||
# Add the client as a peer to the server
|
|
||||||
echo -e "\n### Client ${CLIENT_NAME}
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ${CLIENT_PUB_KEY}
|
|
||||||
PresharedKey = ${CLIENT_PRE_SHARED_KEY}
|
|
||||||
AllowedIPs = ${CLIENT_WG_IPV4}/32,${CLIENT_WG_IPV6}/128" >>"$(pwd)/wireguard/${SERVER_WG_NIC}/${SERVER_WG_NIC}.conf"
|
|
||||||
|
|
||||||
echo -e "\nHere is your client config file as a QR Code:"
|
|
||||||
|
|
||||||
qrencode -t ansiutf8 -l L <"${HOME_DIR}/${SERVER_WG_NIC}-client-${CLIENT_NAME}.conf"
|
|
||||||
qrencode -l L -s 6 -d 225 -o "${HOME_DIR}/${SERVER_WG_NIC}-client-${CLIENT_NAME}.png" <"${HOME_DIR}/${SERVER_WG_NIC}-client-${CLIENT_NAME}.conf"
|
|
||||||
|
|
||||||
echo -e "${INFO} Config available in ${HOME_DIR}/${SERVER_WG_NIC}-client-${CLIENT_NAME}.conf"
|
|
||||||
echo -e "${INFO} QR is also available in ${HOME_DIR}/${SERVER_WG_NIC}-client-${CLIENT_NAME}.png"
|
|
||||||
echo -e "${INFO} MikroTik peer config available in ${HOME_DIR}/mikrotik-${SERVER_WG_NIC}-client-${CLIENT_NAME}.rsc"
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function manageMenu ======================================
|
|
||||||
#
|
|
||||||
function manageMenu() {
|
|
||||||
echo ""
|
|
||||||
echo "It looks like this WireGuard interface is already."
|
|
||||||
echo ""
|
|
||||||
echo "What do you want to do?"
|
|
||||||
echo " 1) Add a new client"
|
|
||||||
echo " 2) Exit"
|
|
||||||
until [[ ${MENU_OPTION} =~ ^[1-4]$ ]]; do
|
|
||||||
read -rp "Select an option [1-2]: " MENU_OPTION
|
|
||||||
done
|
|
||||||
case "${MENU_OPTION}" in
|
|
||||||
1)
|
|
||||||
newClient
|
|
||||||
;;
|
|
||||||
2)
|
|
||||||
exit 0
|
|
||||||
;;
|
|
||||||
esac
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function listConfs =======================================
|
|
||||||
#
|
|
||||||
function listConfs() {
|
|
||||||
local directory
|
|
||||||
directory="$(pwd)/wireguard"
|
|
||||||
|
|
||||||
if [ -d "${directory}" ]; then
|
|
||||||
echo "List of existing configurations:"
|
|
||||||
i=1
|
|
||||||
for folder in "${directory}"/*/; do
|
|
||||||
local users count folder_name
|
|
||||||
users="${folder}/client/"
|
|
||||||
count=$(find "$users" -maxdepth 1 -mindepth 1 -type d 2>/dev/null | wc -l)
|
|
||||||
folder_name=$(basename "${folder}")
|
|
||||||
echo "${i}. ${folder_name} [${count} user(s)]"
|
|
||||||
((i++))
|
|
||||||
done
|
|
||||||
fi
|
|
||||||
echo ""
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function listCCR1 =========================================
|
|
||||||
#
|
|
||||||
# Filter 1: enlever les ";" et remplacer ^m par LF
|
|
||||||
# Filter 2: Grouper 2 lignes consecutives
|
|
||||||
# Filter 3: Print field #4 et #3
|
|
||||||
#
|
|
||||||
function ListCCR() {
|
|
||||||
|
|
||||||
Message "User List"
|
|
||||||
ssh -i $SshKey ${SshUser}@${CCR1} "/interface/wireguard/peers/print proplist=comment,interface" \
|
|
||||||
| grep User | tr -d ";" | sed -e "s/\r//g" \
|
|
||||||
| awk 'NR%2 {printf("%s ", $0); next} {print $0}' \
|
|
||||||
| awk '{print $4, $3}' | tee ${TmpUserList}
|
|
||||||
|
|
||||||
LastEntry=$(cat ${TmpUserList} | sort -r | head -1 | awk '{ print $1 }')
|
|
||||||
NextEntry=$(($LastEntry+1))
|
|
||||||
echo -e "
|
|
||||||
Last Entry = $LastEntry
|
|
||||||
Next Entry = $NextEntry
|
|
||||||
"
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
#=================== MAIN =====================================================
|
|
||||||
#
|
|
||||||
echo -e "\nWireGuard-MikroTik ${BLUE}${CORP}${NC} configurator\n"
|
|
||||||
|
|
||||||
((!$#)) && Help && exit
|
|
||||||
|
|
||||||
|
|
||||||
while getopts cfhl option
|
|
||||||
do
|
|
||||||
case "${option}" in
|
|
||||||
c) BoolCreate=1 ;;
|
|
||||||
f) VarFileLog=1;;
|
|
||||||
h) Help
|
|
||||||
exit 0;;
|
|
||||||
l) ListCCR ;;
|
|
||||||
*) Help
|
|
||||||
exit 1;;
|
|
||||||
esac
|
|
||||||
done
|
|
||||||
|
|
||||||
|
|
||||||
rm -f ${TmpUserList}
|
|
||||||
exit
|
|
||||||
|
|
||||||
#? Check for root, OS, WireGuard
|
|
||||||
installCheck
|
|
||||||
|
|
||||||
listConfs
|
|
||||||
|
|
||||||
#? Check server exist
|
|
||||||
serverName
|
|
||||||
|
|
||||||
#? Check if WireGuard is already installed and load params
|
|
||||||
if [[ -e $(pwd)/wireguard/${SERVER_WG_NIC}/params ]]; then
|
|
||||||
# shellcheck source=/dev/null
|
|
||||||
source "$(pwd)/wireguard/${SERVER_WG_NIC}/params"
|
|
||||||
manageMenu
|
|
||||||
else
|
|
||||||
newInterface
|
|
||||||
fi
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/ip address add address=172.14.40.004/32 comment=WG-CTG interface=wg-ctg
|
|
||||||
/interface wireguard peers add allowed-address=172.16.254.004/32 client-keepalive=10 disabled=no comment="2" \
|
|
||||||
interface=WG-Devices preshared-key="efrLuDEVeDNpj13qlIqbjCiKlPVxE8T+hLt+2gQHF40=" public-key="lRlZ5uUBQsCH4G259f+q2yKAH4rxc2y+KHDlHaksmwo="
|
|
||||||
|
|
@ -1,8 +0,0 @@
|
||||||
|
|
||||||
[WG3]
|
|
||||||
Rtr_Addr_Admin=172.16.1.1
|
|
||||||
Rtr_Addr_Public=ingt.dyndns.org
|
|
||||||
Rrt_Port=14322
|
|
||||||
Rtr_Addr_Private=172.16.253.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=vH29JWx4oamEfJFSOGQspPtHmMuLY1lC5jiFsgu6hio=
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=172.16.253.1/32 disabled=no name="zbook" interface=WG3 \
|
|
||||||
preshared-key="phF3M7QpL+jrxsVZ3guV+SRGFohoTdiNjX/VntDJMS8=" public-key="LzC8W/ChD8Iq7kDJ7F796WRzqPSI30bAKbnJraZ59gE="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = 2J4fFcuD/cuhk8FcO9iqTfDdhsZADR6/qxFbL00DF3M=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.253.1/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = vH29JWx4oamEfJFSOGQspPtHmMuLY1lC5jiFsgu6hio=
|
|
||||||
PresharedKey = phF3M7QpL+jrxsVZ3guV+SRGFohoTdiNjX/VntDJMS8=
|
|
||||||
AllowedIPs = 0.0.0.0/0
|
|
||||||
Endpoint = ingt.dyndns.org:14322
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.8.38.1/32 disabled=no comment="User Real" interface=wg1 \
|
|
||||||
preshared-key="3v+2iZ8UNS6YHKYc55fVgI77wtfRO0JCa4X2bIc34e4=" public-key="T8N9Zdy4JiStBIJI00T9fkIx6KzatLkQ/WXQUDe7QDU="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = IFR3761g8AM2F1ICp+hP9TyudinHHXio0BvPFUOa/3o=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.8.38.1/32
|
|
||||||
DNS = 10.8.38.1,1.1.1.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ywl8GMIFJZlElELbvIPHEzs8/T5VaF9+gaq17JaXThE=
|
|
||||||
PresharedKey = 3v+2iZ8UNS6YHKYc55fVgI77wtfRO0JCa4X2bIc34e4=
|
|
||||||
AllowedIPs = 10.8.0.0/16
|
|
||||||
Endpoint = 199.168.223.11:13233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.8.38.2/32 disabled=no comment="User Ariel" interface=wg1 \
|
|
||||||
preshared-key="cHKDiUAezRuelDtTkbA9pNwzX3kwM7hhG6XB2/MWrkY=" public-key="mQcmO5hLoAXNA3KeF+iXydsZuDg+nkbYNsogvJ32mVs="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = wL/hWyRZtifMLVEgPc31VMmG1+7EYbm5wJI5uxbF+34=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.8.38.2/32
|
|
||||||
DNS = 10.8.38.1,1.1.1.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = zHfHRbQs+3WH9GHBEH7dsh8J0xxLkP2OxWJASV+VWlw=
|
|
||||||
PresharedKey = cHKDiUAezRuelDtTkbA9pNwzX3kwM7hhG6XB2/MWrkY=
|
|
||||||
AllowedIPs = 10.8.0.0/16
|
|
||||||
Endpoint = 199.168.223.11:13233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.8.38.3/32 disabled=no comment="User Guy" interface=wg1 \
|
|
||||||
preshared-key="wF6cwKPq7Yu9tifDy1zPYZ4t+GGXsh6QaJiKwhoYPVA=" public-key="W+1qr4Un3+u0i9bNmItllu3FrY49+NNX9aQfYmVkm1Q="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = 2FvyrN30+4CHTmeJInGRcILPCCVovO1hiYL5+qvYp3M=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.8.38.3/32
|
|
||||||
DNS = 10.8.38.254,1.1.1.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ywl8GMIFJZlElELbvIPHEzs8/T5VaF9+gaq17JaXThE=
|
|
||||||
PresharedKey = wF6cwKPq7Yu9tifDy1zPYZ4t+GGXsh6QaJiKwhoYPVA=
|
|
||||||
AllowedIPs = 10.8.0.0/16
|
|
||||||
Endpoint = 199.168.223.11:13233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
@ -1,8 +0,0 @@
|
||||||
[CCR1016]
|
|
||||||
RtrInterface=WG-Users
|
|
||||||
Rtr_Addr_Admin=10.1.8.11
|
|
||||||
Rtr_Addr_Public=66.171.167.250
|
|
||||||
Rrt_Port=13233
|
|
||||||
Rtr_Addr_Private=10.1.40.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
|
|
@ -1,11 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = 6JSOiUqqTtgU0dH7/4dKKHNXcRfEHk5G+ZC16fc8RmI=
|
|
||||||
Address = 10.1.40.2/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = x1gubMKEhdOXaqMC82KJxy++d8iuKkbodG4UkCeg0Rc=
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
AllowedIPs = 10.0.0.0/8,192.168.0.0/24
|
|
||||||
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
||||||
CCR:
|
|
||||||
---------------------------------------------------------
|
|
||||||
/interface wireguard peers add allowed-address=10.1.33.2/32 client-keepalive=10 disabled=no comment="User DaveOuellette" interface=WG-Users preshared-key="x1gubMKEhdOXaqMC82KJxy++d8iuKkbodG4UkCeg0Rc=" public-key="llensH2ENL4I7fSlo/iOZxP/e1SVf5ODSNvDjjLZ5CQ="
|
|
||||||
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = 2JJoQbCWzka6elz1nCPsfbW9iIo8FM5QPoZO5d3weVY=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.40.250/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = sp9C00rnlbjza6Ny6Lcw2b5fBkDULYd1LoLuoRzmFjk=
|
|
||||||
AllowedIPs = 10.0.0.0/8
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
@ -1,10 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = kC7DaHcEfQ7KsJVBaWjG8XE/UL60GNjRsHOC/baNBGU=
|
|
||||||
Address = 10.1.40.4/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = DrI1g15KlMdLaqNn+PlVbl1kZo6jV9QDlJ1M8gy/m0g=
|
|
||||||
PresharedKey = owl5S2bH9zeL0J0xjNgZ1Y0mb8lPFEjldwTTkNo0CrY=
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
AllowedIPs = 10.0.0.0/8,192.168.0.0/24
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers add allowed-address=10.1.40.4/32 client-keepalive=10 disabled=no comment="User EricStein" interface=WG-Users \
|
|
||||||
preshared-key="owl5S2bH9zeL0J0xjNgZ1Y0mb8lPFEjldwTTkNo0CrY=" public-key="DrI1g15KlMdLaqNn+PlVbl1kZo6jV9QDlJ1M8gy/m0g="
|
|
||||||
|
|
||||||
|
|
@ -1,12 +0,0 @@
|
||||||
[Interface]
|
|
||||||
ListenPort = 51821
|
|
||||||
PrivateKey = IM73gYzzN3riY1KaqBAGoIyldE7a7KS6QLoaDKd/G3E=
|
|
||||||
Address = 10.1.40.3/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = em/aPlSnK78xQMABuaz7GEQ1+7FXFXE+lIoYGbZ9tRs=
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
AllowedIPs = 10.0.0.0/8,192.168.0.0/24
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
||||||
CCR:
|
|
||||||
---------------------------------------------------------
|
|
||||||
/interface wireguard peers add allowed-address=10.1.33.3/32 client-keepalive=10 disabled=no comment="User GuyBoisvert" interface=WG-Users preshared-key="em/aPlSnK78xQMABuaz7GEQ1+7FXFXE+lIoYGbZ9tRs=" public-key="8m7W2+rhGtVKI603JoN7fKvP2Pr5FlvtxYOgVk8AFRg="
|
|
||||||
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
Client:
|
|
||||||
---------------------------------------------------------
|
|
||||||
[Interface]
|
|
||||||
PrivateKey = OKQeBlkw7aoxtGfTlxVJpbRJqXwEzz38dk2gFShMHmI=
|
|
||||||
Address = 10.1.40.1/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = Va8qOJXqvb8GaNCLUf3yzoGYX2+wZZkKHe/d4i+/Rhs=
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
AllowedIPs = 10.0.0.0/8,192.168.0.0/24
|
|
||||||
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
||||||
CCR:
|
|
||||||
---------------------------------------------------------
|
|
||||||
/interface wireguard peers add allowed-address=10.1.33.1/32 client-keepalive=10 disabled=no comment="User SteveQuirion" interface=WG-Users preshared-key="Va8qOJXqvb8GaNCLUf3yzoGYX2+wZZkKHe/d4i+/Rhs=" public-key="PK9tjXmc7L9GrjHYZNp/ED+HFZdzfHNe+L7ZRfrBQUw="
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.1.40.250/32 disabled=no name="guy" interface=WG-Users \
|
|
||||||
preshared-key="sp9C00rnlbjza6Ny6Lcw2b5fBkDULYd1LoLuoRzmFjk=" public-key="KxI3ddeMCT8F9LSq0r49e5xnylMbc4ofKZPaz2foOT0="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = 2JJoQbCWzka6elz1nCPsfbW9iIo8FM5QPoZO5d3weVY=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.40.250/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = sp9C00rnlbjza6Ny6Lcw2b5fBkDULYd1LoLuoRzmFjk=
|
|
||||||
AllowedIPs = 10.0.0.0/8
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.1.40.251/32 disabled=no name="boum01" interface=WG-Users \
|
|
||||||
preshared-key="42dSePvur9+8yZzgtmm5ZqhbqPDs6HTbNO/6hoZCnSY=" public-key="vN4dr8B8jBXD5s+YunG5OGXEim2MRqEN9b/lDmpMsR0="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = sP6aXDHfNKnVZiB4KggyQo0/GQkWY4kiDVbUiG4V2VA=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.40.251/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = 42dSePvur9+8yZzgtmm5ZqhbqPDs6HTbNO/6hoZCnSY=
|
|
||||||
AllowedIPs = 10.0.0.0/8
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.5 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=172.16.200.2/32 disabled=no name="pascal" interface=wg1 \
|
|
||||||
preshared-key="RdbI9KNBQBNBVRyKNnhe7Ujw0A0nKOThDJJOJ7Lgp2Y=" public-key="E0R0TnS3WsDj2CTHa5YtFd3+zGFVZCYYfJzKbTWwqUw="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = GJTT/i6ww5SSozn9ibs+vmQcWVJeQpiOyWDAobLjkXA=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.200.2/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = njwJywr8UndTeemZnxKT62aKxw0JGXggmSqNEHAulUE=
|
|
||||||
PresharedKey = RdbI9KNBQBNBVRyKNnhe7Ujw0A0nKOThDJJOJ7Lgp2Y=
|
|
||||||
AllowedIPs = 0.0.0.0/0
|
|
||||||
Endpoint = d4450da4dffc.sn.mynetname.net:13235
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=172.16.200.3/32 disabled=no name=" boig01" interface=wg1 \
|
|
||||||
preshared-key="SAsf/9Lgw/3g0DXxbJYLnIff9Hb1irm8cRXsrAuCLOc=" public-key="8p3hP25gL2ALfRGStXs0fbk68em/aWobuMYS7w6GPzQ="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = GHvOQbVIPOw3NIqGS2+FlyMcCKIbVvQRbBTtj0rkqVc=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.200.3/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = njwJywr8UndTeemZnxKT62aKxw0JGXggmSqNEHAulUE=
|
|
||||||
PresharedKey = SAsf/9Lgw/3g0DXxbJYLnIff9Hb1irm8cRXsrAuCLOc=
|
|
||||||
AllowedIPs = 10.1.0.0/24,10.50.0.0/24,172.16.28.0/24,172.16.29/24,10.96.0.0/12
|
|
||||||
Endpoint = d4450da4dffc.sn.mynetname.net:13235
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = UEX8Fq51QVG6oIPdCy8eWfrJcONrArRqyieK1faBzkE=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.28.1/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = 3ZnjnM9d/TL2MoNnEgNRlDztYEhHLNjb8EXai9utzCk=
|
|
||||||
PresharedKey = azOSAxvB4FqFR0XYvXiVZL3XZn1QD5S1ttQSSc/MiTk=
|
|
||||||
AllowedIPs = 172.16.24.0/24,172.16.44.0/24
|
|
||||||
Endpoint = 45.61.15.102:13239
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
||||||
[RB5009]
|
|
||||||
Rtr_Addr_Public=heh08h84mnt.sn.mynetname.net
|
|
||||||
Rrt_Port=14321
|
|
||||||
Rtr_Interface=WG-Devices
|
|
||||||
Rtr_Addr_Private=172.16.254.2
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=MmTMFo+Fs3N9jrcVeGKkmMi2NoZctvSB7813LCN12nY=
|
|
||||||
|
|
@ -1,15 +0,0 @@
|
||||||
|
|
||||||
[WG01]
|
|
||||||
Rtr_Addr_Public=heh08h84mnt.sn.mynetname.net
|
|
||||||
Rrt_Port=14322
|
|
||||||
Rtr_Addr_Private=172.16.40.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=iPArVoKAjEYTsvSb2NdQRDIUxHPHBgGTHAK3uAKKvkw=
|
|
||||||
|
|
||||||
[WG02]
|
|
||||||
Rtr_Addr_Public=heh08h84mnt.sn.mynetname.net
|
|
||||||
Rrt_Port=14322
|
|
||||||
Rtr_Addr_Private=172.16.40.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=iPArVoKAjEYTsvSb2NdQRDIUxHPHBgGTHAK3uAKKvkw=
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=172.16.40.2/32 disabled=no name="guy" interface=WG01 \
|
|
||||||
preshared-key="Ib7k3/rWONN4Ga4oA5EfweGiMk8+BvS59HYmpSkSzCA=" public-key="ziekWouNBWmOUIlCx9uO6U4FOoBQbagLqOwnKKEsvn4="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = eOmsbsjFnFi9AtWjJyQmPmWUSdq0gg2P35ysdxOJyVE=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.40.2/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = iPArVoKAjEYTsvSb2NdQRDIUxHPHBgGTHAK3uAKKvkw=
|
|
||||||
PresharedKey = Ib7k3/rWONN4Ga4oA5EfweGiMk8+BvS59HYmpSkSzCA=
|
|
||||||
AllowedIPs = 0.0.0.0/0
|
|
||||||
Endpoint = heh08h84mnt.sn.mynetname.net:14322
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,34 +0,0 @@
|
||||||
#!/bin/bash
|
|
||||||
|
|
||||||
|
|
||||||
INI_FILE="$1"
|
|
||||||
SECTIONS_NUM=0
|
|
||||||
unset ${INI_ALL_SECTION}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
while read -r line || [ -n "$line" ]
|
|
||||||
do
|
|
||||||
echo -e "\nLine = $line"
|
|
||||||
# Skip blank lines and comments
|
|
||||||
if [ -z "$line" -o "${line:0:1}" = ";" -o "${line:0:1}" = "#" ]
|
|
||||||
then
|
|
||||||
continue
|
|
||||||
fi
|
|
||||||
|
|
||||||
# Section marker?
|
|
||||||
if [[ "${line}" =~ ^\[[a-zA-Z0-9_]{1,}\]$ ]]
|
|
||||||
then
|
|
||||||
# Set SECTION var to name of section (strip [ and ] from section marker)
|
|
||||||
SECTION="${line#[}"
|
|
||||||
SECTION="${SECTION%]}"
|
|
||||||
echo -e "SECTION = ${SECTION}"
|
|
||||||
#eval "${INI_ALL_SECTION}=\"\${${INI_ALL_SECTION}# } $SECTION\""
|
|
||||||
((SECTIONS_NUM++))
|
|
||||||
continue
|
|
||||||
fi
|
|
||||||
done <"${INI_FILE}"
|
|
||||||
|
|
||||||
echo -e "SECTIONS_NUM = $SECTIONS_NUM"
|
|
||||||
|
|
||||||
echo "INI_ALL_SECTION = $INI_ALL_SECTION"
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
||||||
[RB5009]
|
|
||||||
Rtr_Addr_Public=heh08h84mnt.sn.mynetname.net
|
|
||||||
Rrt_Port=14322
|
|
||||||
Rtr_Interface=WG-Users
|
|
||||||
Rtr_Addr_Private=172.16.40.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=iPArVoKAjEYTsvSb2NdQRDIUxHPHBgGTHAK3uAKKvkw=
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=172.16.40.3/32 disabled=no name="pcguy" interface=WG-Users \
|
|
||||||
preshared-key="nlvAgKyqzNZon2vv8mGBUoFIyGZ5XWmNLLEN+ULI8OU=" public-key="UYXWTpjsuLD8oBIbmG+/E4ayJ7/HvEs5RotwqlW2938="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = sIwBWQDsBHyXh50pjFEF04NtK5H2zan9eyo1G189VXo=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.40.3/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = iPArVoKAjEYTsvSb2NdQRDIUxHPHBgGTHAK3uAKKvkw=
|
|
||||||
PresharedKey = nlvAgKyqzNZon2vv8mGBUoFIyGZ5XWmNLLEN+ULI8OU=
|
|
||||||
AllowedIPs = 0.0.0.0/0
|
|
||||||
Endpoint = heh08h84mnt.sn.mynetname.net:14322
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.8.38.4/32 disabled=no comment="User Guy" interface=wg1 \
|
|
||||||
preshared-key="azOSAxvB4FqFR0XYvXiVZL3XZn1QD5S1ttQSSc/MiTk=" public-key="xXg+ZoZcv36AuzmfzpBAqGDmgIhEwkucFw5bm/kgCTM="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = UEX8Fq51QVG6oIPdCy8eWfrJcONrArRqyieK1faBzkE=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.8.38.4/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = iPArVoKAjEYTsvSb2NdQRDIUxHPHBgGTHAK3uAKKvkw=
|
|
||||||
PresharedKey = azOSAxvB4FqFR0XYvXiVZL3XZn1QD5S1ttQSSc/MiTk=
|
|
||||||
AllowedIPs = 10.8.0.0/16
|
|
||||||
Endpoint = seve.ingtegration.com:14322
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=172.16.15.1/32 disabled=no comment="User Samantha" interface=WG-Users \
|
|
||||||
preshared-key="PVmxXI1HtsrmM/pmmOfPJRLj9ITG6LXDEGN9NyT/wzY=" public-key="+MNTBsVZUQZ+tjFz9mD1uLH8CEAifSM9O0xqlm+XfCM="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = UA2nrQP2taQy1aYWtwxPPD2/qbQwiWckWSS2ucp5lnE=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 172.16.15.1/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = lCzZXZYTwnDGVbAtEE/vEH0TtpVqy7fBcZMBXiBBA1s=
|
|
||||||
PresharedKey = PVmxXI1HtsrmM/pmmOfPJRLj9ITG6LXDEGN9NyT/wzY=
|
|
||||||
AllowedIPs = 172.16.0.0/16
|
|
||||||
Endpoint = b4a30b139a75.sn.mynetname.net:14233
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,288 +0,0 @@
|
||||||
#!/bin/bash
|
|
||||||
|
|
||||||
Version=240226-1434
|
|
||||||
debug=0
|
|
||||||
CORP=EVOQ
|
|
||||||
Rtr_CCR1_Addr="d90d0d815e13.sn.mynetname.net"
|
|
||||||
Rtr_CCR1_Port="13232"
|
|
||||||
Usr_CCR1_Addr="d90d0d815e13.sn.mynetname.net"
|
|
||||||
Usr_CCR1_Port="13233"
|
|
||||||
|
|
||||||
|
|
||||||
ScriptName=$(basename "$0")
|
|
||||||
BaseDir="/home/boig01/temp/wireguard/real"
|
|
||||||
WgRtrDir="${BaseDir}/routers"
|
|
||||||
WgUsrDir="${BaseDir}/users"
|
|
||||||
|
|
||||||
RTR_CCR1_PUB_KEY="9au45IDNJhHDNtN+LIpJDyMFTEYdN9WOSSHEJS8WRmw="
|
|
||||||
USR_CCR1_PUB_KEY="vaH/ozwjGfhC1ODOJZ6PExwDNTRlms2kU43xmGi67yg="
|
|
||||||
|
|
||||||
NumUser=0
|
|
||||||
NumRouter=0
|
|
||||||
NameUser=0
|
|
||||||
Mode=0
|
|
||||||
|
|
||||||
YELLOW='\033[0;33«m'
|
|
||||||
GREEN='\033[0;32m'
|
|
||||||
RED='\033[0;31m'
|
|
||||||
BLUE='\033[0;34m'
|
|
||||||
NC='\033[0m' # No Color
|
|
||||||
|
|
||||||
# Create paths if not there
|
|
||||||
[ ! -d "$WgRtrDir" ] && mkdir -p "${WgRtrDir}"
|
|
||||||
[ ! -d "$WgUsrDir" ] && mkdir -p "${WgUsrDir}"
|
|
||||||
|
|
||||||
|
|
||||||
Start_Subnet=10.1.32.0
|
|
||||||
Bits_Subnet=3
|
|
||||||
Subnet_Bits=$((32-Bits_Subnet)) # Router address subnet bits
|
|
||||||
NAPS=$((2**Bits_Subnet)) # Nombre d'Adresses Par Subnet
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function Help ============================================
|
|
||||||
#
|
|
||||||
function Help()
|
|
||||||
{
|
|
||||||
echo -e "
|
|
||||||
WireGuard-MikroTik ${BLUE}${CORP}${NC} configurator
|
|
||||||
|
|
||||||
usage:
|
|
||||||
${ScriptName} [Options]
|
|
||||||
|
|
||||||
-n User # (Unique user number between 1 and 253)
|
|
||||||
-u User name (AdrianSmith)
|
|
||||||
-r Router # (EVOQ router #, like 1 or 11)
|
|
||||||
|
|
||||||
When in user mode, you must provide name & unique user number between 2 and 253.
|
|
||||||
This user number will be assigned an ip address 10.1.40.[user #].
|
|
||||||
|
|
||||||
" && exit
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function Info =============================================
|
|
||||||
#
|
|
||||||
# Avec date / time prefix
|
|
||||||
#
|
|
||||||
Info() { printf "${GREEN}%s ${NC} %s\n" "$( date +%F_%T )" "$*" >&2; } # send to stderr
|
|
||||||
|
|
||||||
#=================== function Message ==========================================
|
|
||||||
#
|
|
||||||
#
|
|
||||||
Message() { printf "\n${GREEN}%s${NC}\n" "$*"; } # send to stdout
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function ip2int ===========================================
|
|
||||||
#
|
|
||||||
ip2int()
|
|
||||||
{
|
|
||||||
local a b c d
|
|
||||||
{ IFS=. read a b c d; } <<< $1
|
|
||||||
echo $(((((((a << 8) | b) << 8) | c) << 8) | d))
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function int2ip ===========================================
|
|
||||||
#
|
|
||||||
int2ip()
|
|
||||||
{
|
|
||||||
local ui32=$1; shift
|
|
||||||
local ip n
|
|
||||||
for n in 1 2 3 4; do
|
|
||||||
ip=$((ui32 & 0xff))${ip:+.}$ip
|
|
||||||
ui32=$((ui32 >> 8))
|
|
||||||
done
|
|
||||||
echo $ip
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#======================== CreateUser ==========================================
|
|
||||||
#
|
|
||||||
function CreateUser()
|
|
||||||
{
|
|
||||||
ClientName=$1
|
|
||||||
ClientNum=$2
|
|
||||||
|
|
||||||
CLIENT_PRIV_KEY=$(wg genkey)
|
|
||||||
CLIENT_PUB_KEY=$(echo "${CLIENT_PRIV_KEY}" | wg pubkey)
|
|
||||||
CLIENT_PRE_SHARED_KEY=$(wg genpsk)
|
|
||||||
CLIENT_NUM=$(printf "%03d" $2)
|
|
||||||
CLIENT_FILE_PREFIX="${CLIENT_NUM}-${ClientName}"
|
|
||||||
CLIENT_FILE_WIN="${WgUsrDir}/${CLIENT_FILE_PREFIX}.conf"
|
|
||||||
CLIENT_FILE_RTR="${WgUsrDir}/${CLIENT_FILE_PREFIX}.CCR1.rsc"
|
|
||||||
|
|
||||||
((debug)) && echo -e "
|
|
||||||
ClientName = $1
|
|
||||||
CLIENT_NUM = $CLIENT_NUM
|
|
||||||
CLIENT_FILE_WIN = $CLIENT_FILE_WIN
|
|
||||||
CLIENT_FILE_RTR = $CLIENT_FILE_RTR
|
|
||||||
" && exit
|
|
||||||
|
|
||||||
|
|
||||||
echo -e "Client:
|
|
||||||
${GREEN}---------------------------------------------------------${NC}"
|
|
||||||
echo -e "[Interface]
|
|
||||||
PrivateKey = ${CLIENT_PRIV_KEY}
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 192.168.10.${ClientNum}/32
|
|
||||||
DNS = 192.168.10.1,1.1.1.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ${USR_CCR1_PUB_KEY}
|
|
||||||
PresharedKey = ${CLIENT_PRE_SHARED_KEY}
|
|
||||||
AllowedIPs = 192.168.0.0/16
|
|
||||||
Endpoint = ${Usr_CCR1_Addr}:${Usr_CCR1_Port}
|
|
||||||
" | tee "${CLIENT_FILE_WIN}"
|
|
||||||
|
|
||||||
|
|
||||||
echo -e "\nCCR:
|
|
||||||
---------------------------------------------------------"
|
|
||||||
echo -e "/interface wireguard peers add
|
|
||||||
allowed-address=192.168.10.${ClientNum}/32 client-keepalive=10 disabled=no comment=\"User ${ClientName}\" interface=wg1 \\
|
|
||||||
preshared-key=\"${CLIENT_PRE_SHARED_KEY}\" public-key=\"${CLIENT_PUB_KEY}\""| tee "${CLIENT_FILE_RTR}"
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#======================== CreateRouter ========================================
|
|
||||||
#
|
|
||||||
function CreateRouter()
|
|
||||||
{
|
|
||||||
RouterNum="$1"
|
|
||||||
RouterSubnet="$2"
|
|
||||||
|
|
||||||
RTR_PRIV_KEY=$(wg genkey)
|
|
||||||
RTR_PUB_KEY=$(echo "${RTR_PRIV_KEY}" | wg pubkey)
|
|
||||||
RTR_PRE_SHARED_KEY=$(wg genpsk)
|
|
||||||
RTR_NUM=$(printf "%03d" $1)
|
|
||||||
RTR_FILE_PREFIX="${RTR_NUM}-Router"
|
|
||||||
RTR_FILE_RTR="${WgRtrDir}/${RTR_FILE_PREFIX}.rsc"
|
|
||||||
RTR_FILE_RTR_CCR1="${WgRtrDir}/${RTR_FILE_PREFIX}.CCR1.rsc"
|
|
||||||
|
|
||||||
|
|
||||||
((debug)) && echo -e "
|
|
||||||
ClientName = $1
|
|
||||||
CLIENT_NUM = $RTR_NUM
|
|
||||||
CLIENT_FILE_RTR = $RTR_FILE_RTR
|
|
||||||
" && exit
|
|
||||||
|
|
||||||
|
|
||||||
Message "** Generated output files:"
|
|
||||||
echo -e "${GREEN}---------------------------------------------------------${NC}
|
|
||||||
${RTR_FILE_RTR}
|
|
||||||
${RTR_FILE_RTR_CCR1}
|
|
||||||
"
|
|
||||||
Message "** Router Client Config:"
|
|
||||||
echo -e "${GREEN}---------------------------------------------------------${NC}"
|
|
||||||
echo -e "/interface wireguard
|
|
||||||
add listen-port=13239 mtu=1420 name=wg01 private-key=\"${RTR_PRIV_KEY}\"
|
|
||||||
|
|
||||||
/ip address add address=10.1.41.${RouterNum}/32 comment=wg-wg01 interface=wg01
|
|
||||||
/ip route add dst-address=10.0.0.0/8 gateway=wg01
|
|
||||||
/ip route add dst-address=192.168.0.0/16 gateway=wg01
|
|
||||||
|
|
||||||
/interface wireguard peers add allowed-address=10.0.0.0/8,192.168.0.0/16 client-keepalive=10 disabled=no comment=\"CCR1 Montreal\" interface=wg01 \\
|
|
||||||
endpoint-address=${Rtr_CCR1_Addr} endpoint-port=${Rtr_CCR1_Port} preshared-key=\"${RTR_PRE_SHARED_KEY}\" public-key=\"${RTR_CCR1_PUB_KEY}\"
|
|
||||||
|
|
||||||
/system script add dont-require-permissions=no name=ping-CCR1 owner=admin policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source=\\
|
|
||||||
\"/ping interval=10 10.1.8.11 count=61\"
|
|
||||||
|
|
||||||
/system/scheduler add interval=10m name=Ping-CCR1 on-event=\"/system/script/run ping-CCR1\" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=apr/02/2022 start-time=12:00:00 " \
|
|
||||||
| tee "${RTR_FILE_RTR}"
|
|
||||||
|
|
||||||
|
|
||||||
#echo -e "\n"
|
|
||||||
Message "** CCR1 Config:"
|
|
||||||
echo -e "${GREEN}---------------------------------------------------------${NC}"
|
|
||||||
echo -e "/interface wireguard peers add allowed-address=10.1.41.${RouterNum}/32,${RouterSubnet} disabled=no comment=\"Router ${RouterNum}\" \\
|
|
||||||
interface=WG-Routers preshared-key=\"${RTR_PRE_SHARED_KEY}\" public-key=\"${RTR_PUB_KEY}\"
|
|
||||||
|
|
||||||
/ip route add dst-address=${RouterSubnet} gateway=10.1.41.${RouterNum}" \
|
|
||||||
| tee "${RTR_FILE_RTR_CCR1}"
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#=================== function RrtSubnet ========================================
|
|
||||||
#
|
|
||||||
RtrSubnet()
|
|
||||||
{
|
|
||||||
local RtrNum=$1
|
|
||||||
|
|
||||||
BaseNum=$(ip2int $Start_Subnet) # Subnet de depart en format integer
|
|
||||||
Nth=$((RtrNum-1)) # Le router #1 est "0" dans la séquence de subnet, #2 est 1, etc
|
|
||||||
Nth=$((Nth*NAPS)) # Decimal a aditionner en fonction pour le Nth router
|
|
||||||
Subnet=$((BaseNum+Nth)) # Nth subnet calculé
|
|
||||||
# Subnet="${Subnet}/$(Bits_Subnet=3})"
|
|
||||||
|
|
||||||
echo -e "$(int2ip $Subnet)/${Subnet_Bits}"
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
#================ MAIN ========================================================
|
|
||||||
#
|
|
||||||
|
|
||||||
((!$#)) && Help && exit # If no command parameters passed, help and bail out
|
|
||||||
echo -e "\nWireGuard-MikroTik ${BLUE}${CORP}${NC} configurator version $Version\n"
|
|
||||||
|
|
||||||
while getopts dhn:r:u: option
|
|
||||||
do
|
|
||||||
case "${option}" in
|
|
||||||
d) debug=1
|
|
||||||
;;
|
|
||||||
h) Help
|
|
||||||
exit ;;
|
|
||||||
n) NumUser=${OPTARG}
|
|
||||||
Mode="User"
|
|
||||||
;;
|
|
||||||
r) NumRouter=${OPTARG}
|
|
||||||
Mode="Router"
|
|
||||||
;;
|
|
||||||
u) NameUser=${OPTARG}
|
|
||||||
;;
|
|
||||||
*) echo -e "Usage (bad argument: $OPTARG) \n"
|
|
||||||
exit 1;;
|
|
||||||
esac
|
|
||||||
done
|
|
||||||
|
|
||||||
|
|
||||||
((debug)) && echo -e "
|
|
||||||
NumRouter = ${NumRouter}
|
|
||||||
NumUser = ${NumUser}
|
|
||||||
RtrSubnet = $(RtrSubnet ${NumRouter})
|
|
||||||
" && exit
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
if [[ "${NumRouter}" -ne "0" && "${NumUser}" -ne "0" ]]
|
|
||||||
then
|
|
||||||
echo "** Error, can't use user and router # simulteaneously"
|
|
||||||
exit 1
|
|
||||||
fi
|
|
||||||
|
|
||||||
|
|
||||||
case "$Mode" in
|
|
||||||
User) CreateUser $NameUser $NumUser
|
|
||||||
exit
|
|
||||||
;;
|
|
||||||
Router) CreateRouter $NumRouter $(RtrSubnet ${NumRouter})
|
|
||||||
exit
|
|
||||||
;;
|
|
||||||
*) echo -e "\n** ERROR : User # was not provided"
|
|
||||||
Help
|
|
||||||
;;
|
|
||||||
esac
|
|
||||||
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers add
|
|
||||||
allowed-address=10.1.40.1/32 client-keepalive=10 disabled=no comment="User Real" interface=wg1 \
|
|
||||||
preshared-key="EGEruoS+9iFaDV7MOydXdkE8eQGpDhil446OzImIfOY=" public-key="J4nC/m8G2wMNDYeywORCYIo9eZq6v6fMgZVOFpRv3m0="
|
|
||||||
|
|
@ -1,12 +0,0 @@
|
||||||
[Interface]
|
|
||||||
ListenPort = 51821
|
|
||||||
PrivateKey = QHjXJWfo+G2BoJTKaLEviueDyK90nW/14ibUD3X31HI=
|
|
||||||
Address = 192.168.10.1/32
|
|
||||||
DNS = 192.168.10.254,1.1.1.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = vaH/ozwjGfhC1ODOJZ6PExwDNTRlms2kU43xmGi67yg=
|
|
||||||
PresharedKey = EGEruoS+9iFaDV7MOydXdkE8eQGpDhil446OzImIfOY=
|
|
||||||
Endpoint = d90d0d815e13.sn.mynetname.net:13233
|
|
||||||
AllowedIPs = 192.168.0.0/16
|
|
||||||
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers add
|
|
||||||
allowed-address=192.168.10.2/32 client-keepalive=10 disabled=no comment="User Guy" interface=wg1 \
|
|
||||||
preshared-key="0FaSQ2/iTj2Eu7ttME16pIet6nJnh0gtfEACK9aCCBI=" public-key="tQk6OTijE3YawHAQk6jfcVmgMzvH3zUyNqrhl3zRmHQ="
|
|
||||||
|
|
@ -1,12 +0,0 @@
|
||||||
[Interface]
|
|
||||||
ListenPort = 51821
|
|
||||||
PrivateKey = wDaoTqcCfIar7dukhYQYu8M5LDN+3BZc8Zcn/UetjWQ=
|
|
||||||
Address = 192.168.10.2/32
|
|
||||||
DNS = 1.1.1.1
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = vaH/ozwjGfhC1ODOJZ6PExwDNTRlms2kU43xmGi67yg=
|
|
||||||
PresharedKey = 0FaSQ2/iTj2Eu7ttME16pIet6nJnh0gtfEACK9aCCBI=
|
|
||||||
Endpoint = d90d0d815e13.sn.mynetname.net:13233
|
|
||||||
AllowedIPs = 192.168.2.0/24
|
|
||||||
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
/home/boig01/Nextcloud2/guydev/network/wireguard/real/users/002-Guy.conf
|
|
||||||
|
|
@ -1,10 +0,0 @@
|
||||||
[RB5009-Users]
|
|
||||||
RtrInterface=WG-Users
|
|
||||||
Rtr_Addr_Admin=10.1.99.254
|
|
||||||
Rtr_Addr_Public=142.217.209.155
|
|
||||||
Rrt_Port=13235
|
|
||||||
Rtr_Addr_Private=10.1.15.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=zHEBUKg9qNtC9+RaQeHiDoTmlsPc+9NBN+H+W/ZDPF4=
|
|
||||||
Rtr_DNS=10.1.15.254
|
|
||||||
Rtr_Route_Subnet=10.1.0.0/16
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.1.15.1/32 disabled=no name="boig01" interface=WG-Users \
|
|
||||||
preshared-key="tqtgjTsZUxkdFM1IQNfRdNuYf2MgH/2kHOOO1+ilMCQ=" public-key="r11A7Z+IBeLFL6G+a+M0jgr1tTd9jTl/b+RROj/6whk="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = UKNcUZwVMzU4icXo2M7WsLm2OVvUiPTBndLn3xBiB2Y=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.15.1/32
|
|
||||||
DNS = 10.1.15.254
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = zHEBUKg9qNtC9+RaQeHiDoTmlsPc+9NBN+H+W/ZDPF4=
|
|
||||||
PresharedKey = tqtgjTsZUxkdFM1IQNfRdNuYf2MgH/2kHOOO1+ilMCQ=
|
|
||||||
AllowedIPs = 10.1.0.0/16
|
|
||||||
Endpoint = 142.217.209.155:13235
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.1.15.2/32 client-keepalive=20s disabled=no name="boucm01" interface=WG-Users \
|
|
||||||
preshared-key="6VOptNdny7TsKvQvcWFn0V+RtBMs+iin3elOxE9tXX8=" public-key="yxVvlFZnnZOePdCxLX27zsnLfApcGBhmlqR5772mN2c="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = ACO/UBhvrQMLlrtEE7sU8qgDxYVmYLEn+j6hva8BBHM=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.1.15.2/32
|
|
||||||
DNS = 10.1.15.254
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = zHEBUKg9qNtC9+RaQeHiDoTmlsPc+9NBN+H+W/ZDPF4=
|
|
||||||
PresharedKey = 6VOptNdny7TsKvQvcWFn0V+RtBMs+iin3elOxE9tXX8=
|
|
||||||
AllowedIPs = 10.1.0.0/16
|
|
||||||
Endpoint = 142.217.209.155:13235
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,8 +0,0 @@
|
||||||
[CCR1009]
|
|
||||||
RtrInterface=WG-Users
|
|
||||||
Rtr_Addr_Admin=10.3.8.1
|
|
||||||
Rtr_Addr_Public=184.95.250.138
|
|
||||||
Rrt_Port=13421
|
|
||||||
Rtr_Addr_Private=10.3.13.254
|
|
||||||
Rtr_CIDR_Mask=24
|
|
||||||
Rtr_PUB_KEY=ZypJ/xU5ieCA3+iHR5AhoPP6XDsSTpMuzo5foi+bWWc=
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
U-001-guy.conf
|
|
||||||
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.3.13.1/32 disabled=no name="guy" interface=WG-Users \
|
|
||||||
preshared-key="ZhEZjV5AxymxSHWAXL0zyhpzdxSqRcl8RJi2/M1b+vw=" public-key="I0B0XvNOt0c781ir/WtUC2oc3dnmIoJPr9vLacJHdFY="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = WDYlcHHQIz1pjqOLBRtNyLteSIbs7dKzJq60MJ8Pv0k=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.3.13.1/32
|
|
||||||
DNS = 10.3.6.15
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ZypJ/xU5ieCA3+iHR5AhoPP6XDsSTpMuzo5foi+bWWc=
|
|
||||||
PresharedKey = ZhEZjV5AxymxSHWAXL0zyhpzdxSqRcl8RJi2/M1b+vw=
|
|
||||||
AllowedIPs = 10.3.0.0/16
|
|
||||||
Endpoint = 184.95.250.138:13421
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.3.13.2/32 disabled=no name="marc" interface=WG-Users \
|
|
||||||
preshared-key="adwActiBEETXk6wSx8V0w0GD7kFZ7j7CPlzuFRleG/s=" public-key="Hmz/JS3QYKNKuHFSs2fVyh3MxuEhLLRuUWXmAO4P1FY="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = wGh9Fx2x4FDyv0cuQK1g8yFm+tqTRRamdoneccfaEEw=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.3.13.2/32
|
|
||||||
DNS = 10.3.6.15
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ZypJ/xU5ieCA3+iHR5AhoPP6XDsSTpMuzo5foi+bWWc=
|
|
||||||
PresharedKey = adwActiBEETXk6wSx8V0w0GD7kFZ7j7CPlzuFRleG/s=
|
|
||||||
AllowedIPs = 10.3.0.0/16
|
|
||||||
Endpoint = 184.95.250.138:13421
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.3.13.5/32 disabled=no name="exoc" interface=WG-Users \
|
|
||||||
preshared-key="KGTzc6c4BSf/pFoT79CdeTtt2CT6eTQKaoMyL2jaCYg=" public-key="69ohh5vjeOFU6N7Q82GcRF7/Ss2tmNQ1MCQGMZC08xI="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = cIPz2r+7Bu2jpI1ShXaaFrF6qbI1aYLrJR9FTiqQ53g=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.3.13.5/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ZypJ/xU5ieCA3+iHR5AhoPP6XDsSTpMuzo5foi+bWWc=
|
|
||||||
PresharedKey = KGTzc6c4BSf/pFoT79CdeTtt2CT6eTQKaoMyL2jaCYg=
|
|
||||||
AllowedIPs = 10.3.0.0/16
|
|
||||||
Endpoint = 184.95.250.138:13421
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,3 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.3.13.6/32 disabled=no name="pascal" interface=WG-Users \
|
|
||||||
preshared-key="V1oUlbYR+11SBr5W0hOtUuyRdwVioIfyKJDrHSrUToY=" public-key="jKNIbZkJf4zOGIYVhIawZzC4NXEsKBDTBmNjdEmR2GU="
|
|
||||||
|
|
@ -1,13 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = aPBd3mVCh1Xvd6EoG4xzwHJ8cb1AuPK4NunE8sZf+30=
|
|
||||||
ListenPort = 51821
|
|
||||||
Address = 10.3.13.6/32
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = ZypJ/xU5ieCA3+iHR5AhoPP6XDsSTpMuzo5foi+bWWc=
|
|
||||||
PresharedKey = V1oUlbYR+11SBr5W0hOtUuyRdwVioIfyKJDrHSrUToY=
|
|
||||||
AllowedIPs = 10.3.0.0/16
|
|
||||||
Endpoint = 184.95.250.138:13421
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.4 KiB |
|
|
@ -1,2 +0,0 @@
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.3.13.1/32 disabled=no name="guy" interface=WG-Users preshared-key="ZhEZjV5AxymxSHWAXL0zyhpzdxSqRcl8RJi2/M1b+vw=" public-key="I0B0XvNOt0c781ir/WtUC2oc3dnmIoJPr9vLacJHdFY="
|
|
||||||
|
|
@ -1,7 +0,0 @@
|
||||||
# WireGuard client peer configure
|
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.100.99.2/32 comment=\
|
|
||||||
wg01-client-Router001 interface=wg01 \
|
|
||||||
preshared-key="evIsO6Pl6d9uFSkM0RrAzkYyVqbhBiG3+1XKaXgD5Ws=" public-key=\
|
|
||||||
"xDaZbGDa+Q66zdmnH5Ngjh0byL7bMKEdKdlQ+3wNG0U="
|
|
||||||
|
|
||||||
|
|
@ -1,10 +0,0 @@
|
||||||
[Interface]
|
|
||||||
PrivateKey = yMtyTz/gLwMLzbkmGriTRQeQu3vuuyStGz7LPv1f3GI=
|
|
||||||
Address = 10.100.99.2/32,fd42:64:63::2/128
|
|
||||||
DNS = 1.1.1.1,8.8.8.8
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = oIZef/qKVdZm6sWzX3SqRs8Yr1wdJQEynKMtZ6+v32A=
|
|
||||||
PresharedKey = evIsO6Pl6d9uFSkM0RrAzkYyVqbhBiG3+1XKaXgD5Ws=
|
|
||||||
Endpoint = 172.16.16.136:13231
|
|
||||||
AllowedIPs = 0.0.0.0/0,::/0
|
|
||||||
Binary file not shown.
|
Before Width: | Height: | Size: 1.3 KiB |
|
|
@ -1,101 +0,0 @@
|
||||||
# WireGuard interface configure
|
|
||||||
/interface wireguard
|
|
||||||
add listen-port=13231 mtu=1420 name=wg01 private-key="sLKaz0+jIgc3hkmob7tKXcRM1nAyKCzNn4IxhXOuv20="
|
|
||||||
/ip address add address=10.100.99.1/24 comment=wg-wg01 interface=wg01
|
|
||||||
|
|
||||||
# WireGuard client peer configure
|
|
||||||
/interface wireguard peers
|
|
||||||
add allowed-address=10.100.99.2/32 comment=wg01-client-Router001 interface=wg01 \
|
|
||||||
preshared-key="evIsO6Pl6d9uFSkM0RrAzkYyVqbhBiG3+1XKaXgD5Ws=" public-key=\
|
|
||||||
"xDaZbGDa+Q66zdmnH5Ngjh0byL7bMKEdKdlQ+3wNG0U="
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
CLIENT_PRIV_KEY=$(wg genkey)
|
|
||||||
CLIENT_PUB_KEY=$(echo "${CLIENT_PRIV_KEY}" | wg pubkey)
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
Users 10.1.40.0/24
|
|
||||||
WG_Users Pub Key : EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
Usr_CCR1_Addr="66.171.167.250"
|
|
||||||
Usr_CCR1_Port="13233"
|
|
||||||
|
|
||||||
Routers 10.1.41.0/24
|
|
||||||
WG_Routers Pub Key : 9au45IDNJhHDNtN+LIpJDyMFTEYdN9WOSSHEJS8WRmw=
|
|
||||||
Rtr_CCR1_Addr="66.171.167.250"
|
|
||||||
Rtr_CCR1_Port="13232"
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
Guy EVOQ Config:
|
|
||||||
=================
|
|
||||||
[Interface]
|
|
||||||
ListenPort = 51821
|
|
||||||
PrivateKey = IM73gYzzN3riY1KaqBAGoIyldE7a7KS6QLoaDKd/G3E=
|
|
||||||
Address = 10.1.40.3/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = em/aPlSnK78xQMABuaz7GEQ1+7FXFXE+lIoYGbZ9tRs=
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
AllowedIPs = 10.0.0.0/8,192.168.0.0/24
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
Steve Config:
|
|
||||||
=============
|
|
||||||
[Interface]
|
|
||||||
ListenPort = 51822
|
|
||||||
PrivateKey = OKQeBlkw7aoxtGfTlxVJpbRJqXwEzz38dk2gFShMHmI=
|
|
||||||
Address = 10.1.40.1/32
|
|
||||||
DNS = 10.1.3.40,10.1.3.41
|
|
||||||
|
|
||||||
[Peer]
|
|
||||||
PublicKey = EsxauwYNBotyfDJzy9yCUXDci2gHbtZLhUWnMgMP0AY=
|
|
||||||
PresharedKey = Va8qOJXqvb8GaNCLUf3yzoGYX2+wZZkKHe/d4i+/Rhs=
|
|
||||||
Endpoint = 66.171.167.250:13233
|
|
||||||
AllowedIPs = 10.0.0.0/8,192.168.0.0/24
|
|
||||||
PersistentKeepalive = 25
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
add allowed-address=10.1.41.253/32,172.16.100.1/32 client-keepalive=10s comment="Router 253" interface=WG-Routers preshared-key="BqdyD7C+AyMFhs67vBjCSfL4dWe3XJ1uMDg6lLgYEe4=" public-key=\
|
|
||||||
"UlkgLQIbXkJ2dsrik1aDvOLSQrSdPpPNVLJjejE1yRU="
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
endpoint-address=${Rtr_CCR1_Addr} endpoint-port=${Rtr_CCR1_Port}
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
/interface wireguard
|
|
||||||
add listen-port=13231 mtu=1420 name=wg01 private-key="8DcsFMmQVl3JyOXNuJvSiYaTqz6AqUECOSeIMDhijEA="
|
|
||||||
/ip address add address=10.1.41.253/32 comment=wg-wg01 interface=wg01
|
|
||||||
|
|
||||||
/interface wireguard peers add allowed-address=10.0.0.0/8,192.168.0.0/24 client-keepalive=10 disabled=no comment="CCR1 Montreal" interface=wg01 \
|
|
||||||
preshared-key="BqdyD7C+AyMFhs67vBjCSfL4dWe3XJ1uMDg6lLgYEe4=" public-key="9au45IDNJhHDNtN+LIpJDyMFTEYdN9WOSSHEJS8WRmw="
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
endpoint-address=66.171.167.250
|
|
||||||
Some files were not shown because too many files have changed in this diff Show more
Loading…
Add table
Add a link
Reference in a new issue