wbk/wireguard-install
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
35 commits 1 branch 0 tags 104 KiB
Commit graph

29 commits

Author SHA1 Message Date
Perlover
8efab59dff
Adding waiting (-w) in iptables for wg-iptables service 
At one point I overloaded the server and Wireguard was not working on it. I began to understand and found out that the `wg-iptables` service did not start. The logs were:

```
May 19 17:50:27 server.domain iptables[714]: Another app is currently holding the xtables lock. Perhaps you want to use the -w option?
May 19 17:50:27 server.domain systemd[1]: wg-iptables.service: Main process exited, code=exited, status=4/NOPERMISSION
May 19 17:50:27 server.domain systemd[1]: wg-iptables.service: Failed with result 'exit-code'.
May 19 17:50:27 server.domain systemd[1]: Failed to start wg-iptables.service.

```

Then I started googling this problem [and found out](https://lists.zx2c4.com/pipermail/wireguard/2019-October/004592.html) that the problem is that your startup commands do not specify to wait in case of blocking. This patch fixes the problem.
 2023-05-19 18:17:00 +02:00
Nyr
98f45f883c Fix resolv.conf detection 
Some systems have other DNS servers along with 127.0.0.53 in /etc/resolv.conf
 2022-08-21 20:35:42 +02:00
Nyr
5c53ebd312 Add support for Alma and Rocky 9 2022-08-21 18:55:19 +02:00
IRN-Kawakaze
2a6df4daf0 Fix: Remove an existing client. 
"Remove an existing client" may mistakenly remove multiple clients.
For example: remove client "test" will also remove client "test1".
 2022-01-30 17:35:57 +08:00
Nyr
f2f0d3d3ac Fix boringtun path 
/usr/local/sbin is not included in the cron $PATH, so the absolute path needs to be used when running the boringtun binary.
 2021-11-24 18:01:34 +01:00
Nyr
3dfcebc225 Fix boringtun-upgrade test 2021-09-03 17:37:05 +02:00
Nyr
b0ccd4d0bc Add support for AlmaLinux and Rocky Linux 
An unrelated fix to avoid one harmless warning during removal is also included.
 2021-09-03 17:31:07 +02:00
Nyr
9210290c19 Add support for Debian 11 2021-09-03 12:04:22 +02:00
Nyr
2a065111b1 Check for wget or curl 
Fix #37
 2021-08-16 20:22:06 +02:00
Nyr
514a93411f Increase priority of wireguard-forward.conf 
Bugfix for some third party images. More information here:
https://github.com/Nyr/openvpn-install/issues/848

Thanks @trivvz
 2021-06-19 14:00:12 +02:00
trantuanminh1754
c2248950b6
Update AdGuard DNS IP 
AdGuard changed their DNS IP recently: https://adguard.com/en/blog/adguard-dns-new-addresses.html
 2020-09-29 17:37:52 -04:00
Nyr
8a55761005 Use official Ubuntu packages 
The PPA is no longer needed to set up WireGuard in Ubuntu 18.04:
https://lists.zx2c4.com/pipermail/wireguard/2020-August/005737.html
 2020-09-02 12:45:40 +02:00
Nyr
3fb598f794 Fix #10 
-N is an illegal option for read in sh.
 2020-07-18 18:47:49 +02:00
Nyr
03cf6ddf2e resolv.conf parsing optimizations 2020-05-29 14:16:10 +02:00
Nyr
42bee2ae2f egrep IP regex optimizations 
Thanks @sorcun
 2020-05-29 14:15:39 +02:00
Nyr
3a2ba591ba Bugfix 
Variables which can be empty, shouldn't be quoted in this situation.
 2020-05-25 17:25:50 +02:00
Nyr
aa04ca5dcf Add Quad9 DNS servers 2020-05-21 22:36:47 +02:00
Nyr
962862c332 Small style changes 2020-05-21 19:18:29 +02:00
Nyr
a6426a138e Improve client configuration annexation 
The old approach did break BoringTun due to a bug (in BoringTun).
 2020-05-21 15:04:54 +02:00
Nyr
6669ffab32 Grammar improvements 2020-05-20 23:36:47 +02:00
Nyr
4b664b7e47 Detect OpenVZ 6 2020-05-20 12:04:26 +02:00
Nyr
8b0b1a086b Check for sbin in $PATH 2020-05-19 17:03:03 +02:00
Nyr
55bdb64030 Fixes #5 2020-05-19 14:29:32 +02:00
Nyr
ff0cdfa17f Add support for containers 
Containers are supported via the BoringTun user space tool.

Additional small changes:
- NAT fixed
- Do not force bc dependency for Debian any longer (#2)
 2020-05-18 19:07:31 +02:00
Nyr
137b08a8fb Fix ip6tables path 2020-05-05 16:47:52 +02:00
Nyr
f52d8f48ff Fix #2 
Install bd for Debian to address upstream bug.

Thanks @sentabi for the report.
 2020-05-02 18:58:44 +02:00
Nyr
6b94ff0912 Improved firewall installation logic 
New logic makes way more sense:
- If either firewalld or iptables are present, use whatever we have
- If not, install firewalld in CentOS/Fedora and iptables in Debian/Ubuntu
 2020-05-01 17:52:40 +02:00
Nyr
eaa24c9b99 Check for gnupg availability 
The gnupg package is not available by default in some Ubuntu 18.04 images. Check for it and install if required.
 2020-04-30 22:55:24 +02:00
Nyr
941f27bd2f First commit 2020-04-30 20:26:38 +02:00