wireguard 详细的服务端配置和客户端配置 使客户端能访问外网

服务端配置： [Interface] Address = 10.0.0.1/24 ListenPort = 51820 PrivateKey = <server private key> PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE; ip6tables -A FORWARD -i %i -j ACCEPT; ip6tables-t nat-A POSTROUTING-o eth0-j MASQUERADE PostDown = iptables -D FORWARD –i %i –j ACCEPT; iptables –t nat –D POSTROUTING –o eth0 –j MASQUERADE; ip6tables –D FORWARD–I %I–J ACCEPT; ip6tables–t nat–D POSTROUTING–O eth0–J MASQUERADE [Peer] #客户端信息，可多个，其中PublicKey和AllowedIPs是必须的。其他参数根据实际情况设置。 PublicKey = <client public key> #客户端的公钥 AllowedIPs = 10.0.0.2/32 #客户端的地址范围 客户端配置： [Interface] Address=10.0.0.2/24 PrivateKey=<client private key> [Peer] PublicKey=<server public key> AllowedIPs= 0.0 . 0 . 0 / 0, :: / 0 Endpoint=<server IP>:51820 PersistentKeepalive=25