-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Configure Wireguard on UniFi USG #4
Comments
Hi Damian.. great post. Quick question - Where do we specify the protocol like TCP/UDP. I have seen some articles with TCP or UDP 443 and i would prefer to do that rather higher port. Thanks, |
Hi. Super easy with Wireguard to run on a different port. Only thing to remember is that both sides need to agree on the port. The far side should have its listener set in its configuration with a line similar to
While your USG will then connect to that agreed port with the line finishing with :443 as the new port choice
443 in this case should then be permitted on the firewalls and to keep life simple not already be in use by a website on the endpoints Damian |
Damian, Thank you for this excellent writeup. I take it the wireguard deb package gets nuked when you upgrade the firmware on the router, right? Firmware updates are of those things that I don't do frequently (every 2-3 months), so I'm sure to forget to re-install additional packages back onto the firewall. I'm looking at: |
Sir? Will it be possible to apply this to wireguard config files given by my vpn provider? A cleint version of this guide perhaps? Thanks in advance. |
I'm confused by some of these steps (and a total dummy, so pardon my ignorance). I updated the CURL command to the following to get the latest version of vyatta's wireguard package: After I create the tunnel secrets, how do I access them? I need them for this step here, don't I? Now, we need to tell the interface the address of the far side of the bridgeAnd also the password to allow us connectset interfaces wireguard wg0 peer endpoint 14.28.207.179:51820 Also, in that command above, is 14.28.207.179 the IP of our Wireguard client that is going to connect to the USG? How do we set it so that a client can connect from anywhere? I'd appreciate any help you can provide. Many thanks! |
Configure Wireguard on UniFi USG
Installing and Configuring Wireguard on the UniFi Security Gateway
https://blog.damianflynn.com/USG-Wireguard/
The text was updated successfully, but these errors were encountered: