娃哈哈好喝系统版本:rocky9.4
需要提前装好docker
先贴上官网:
https://wg-easy.github.io/wg-easy/latest/examples/tutorials/basic-installation/
下载docker compose文件
[root@rocky data]# mdkir wg-easy
[root@rocky data]# cd wg-easy
[root@rocky data]# curl -o ./docker-compose.yml https://raw.githubusercontent.com/wg-easy/wg-easy/master/docker-compose.yml
[root@rocky data]# ls
docker-compose.yml
[root@rocky data]# cat docker-compose.yml
volumes:
etc_wireguard:
services:
wg-easy:
environment:
#Optional:
#- PORT=51821
#- HOST=0.0.0.0
# 禁用https,否则需要使用https才能打开管理后台
- INSECURE=true
image: ghcr.io/wg-easy/wg-easy:15
container_name: wg-easy
networks:
wg:
ipv4_address: 10.42.42.42
ipv6_address: fdcc:ad94:bacf:61a3::2a
volumes:
- etc_wireguard:/etc/wireguard
- /lib/modules:/lib/modules:ro
ports:
- "51820:51820/udp"
- "51821:51821/tcp"
restart: unless-stopped
cap_add:
- NET_ADMIN
- SYS_MODULE
# - NET_RAW # ⚠️ Uncomment if using Podman
sysctls:
- net.ipv4.ip_forward=1
- net.ipv4.conf.all.src_valid_mark=1
- net.ipv6.conf.all.disable_ipv6=0
- net.ipv6.conf.all.forwarding=1
- net.ipv6.conf.default.forwarding=1
networks:
wg:
driver: bridge
enable_ipv6: true
ipam:
driver: default
config:
- subnet: 10.42.42.0/24
- subnet: fdcc:ad94:bacf:61a3::/64
[root@rocky data]#
上面的配置文件只需要修改一个地方:- INSECURE=true,默认是必须使用https打开,改成true之后可以使用http
下一步直接启动
[root@rocky data]# docker compose up -d
[root@rocky data]# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
78bcaecdd4f9 ghcr.io/wg-easy/wg-easy:15 "docker-entrypoint.s…" 5 hours ago Up 5 hours (healthy) 0.0.0.0:51820->51820/udp, 0.0.0.0:51821->51821/tcp wg-easy
后端管理使用tcp的51821端口,客户端连接使用udp的51820端口
客户端下载地址: