forked from mirrors/amnezia-wg-easy
577af9947d
This PR allows the use of Address Ranges using the CIDR notation. To make it backward compatible, i introduced a new env variable WG_DEFAULT_ADDRESS_RANGE (defaults to the previous default of 24). This allows the usage of smaller subnets (or possibly larger; but i didn't test that due to restrictions on my network). Client IPs will be calculated with correct IP addresses instead of making assumptions of the address space.
43 lines
1.2 KiB
YAML
43 lines
1.2 KiB
YAML
version: "3.8"
|
|
volumes:
|
|
etc_wireguard:
|
|
|
|
services:
|
|
wg-easy:
|
|
environment:
|
|
# Change Language:
|
|
# (Supports: en, ua, ru, tr, no, pl, fr, de, ca, es, ko, vi, nl, is, pt, chs, cht, it, th)
|
|
- LANG=de
|
|
# ⚠️ Required:
|
|
# Change this to your host's public address
|
|
- WG_HOST=raspberrypi.local
|
|
|
|
# Optional:
|
|
# - PASSWORD=foobar123
|
|
# - WG_PORT=51820
|
|
# - WG_DEFAULT_ADDRESS=10.8.0.x
|
|
# - WG_DEFAULT_ADDRESS_RANGE=24
|
|
# - WG_DEFAULT_DNS=1.1.1.1
|
|
# - WG_MTU=1420
|
|
# - WG_ALLOWED_IPS=192.168.15.0/24, 10.0.1.0/24
|
|
# - WG_PERSISTENT_KEEPALIVE=25
|
|
# - WG_PRE_UP=echo "Pre Up" > /etc/wireguard/pre-up.txt
|
|
# - WG_POST_UP=echo "Post Up" > /etc/wireguard/post-up.txt
|
|
# - WG_PRE_DOWN=echo "Pre Down" > /etc/wireguard/pre-down.txt
|
|
# - WG_POST_DOWN=echo "Post Down" > /etc/wireguard/post-down.txt
|
|
# - UI_TRAFFIC_STATS=true
|
|
|
|
image: ghcr.io/wg-easy/wg-easy
|
|
container_name: wg-easy
|
|
volumes:
|
|
- etc_wireguard:/etc/wireguard
|
|
ports:
|
|
- "51820:51820/udp"
|
|
- "51821:51821/tcp"
|
|
restart: unless-stopped
|
|
cap_add:
|
|
- NET_ADMIN
|
|
- SYS_MODULE
|
|
sysctls:
|
|
- net.ipv4.ip_forward=1
|
|
- net.ipv4.conf.all.src_valid_mark=1
|