server A
umask 077
wg genkey > private
wg pubkey < private
iplinkadd wg0 type wireguard
ip addr add192.168.1.1/24 dev wg0
wg set wg0 private-key ./private
iplinkset wg0 up
[root@localhost ~]# wg
interface: wg0
public key: ljISFZM9ueE/1EDSK5TdClJX1jXed33VFF+Hy=
private key: (hidden)
listening port: 60419
wg set wg0 peer dRFqzYMolk1lYDNZCjH8g1hhKxvqCg/tr66MxHE= allowed-ips 192.168.1.2/32 endpoint 192.168.6.22:55109
server B
umask 077
wg genkey > private
wg pubkey < private
iplinkadd wg0 type wireguard
ip addr add192.168.1.2/24 dev wg0
wg set wg0 private-key ./private
iplinkset wg0 up
[root@localhost ~]# wg
interface: wg0
public key: dRFqzYMolk1lYDNZCjH8g1hhKxvqCg/tr66MxHE=
private key: (hidden)
listening port: 55109
wg set wg0 peer ljISFZM9ueE/1EDSK5TdClJX1jXed33VFF+Hy= allowed-ips 192.168.1.1/32 endpoint 192.168.6.21:60419
备注:删除peer
wg set wg0 peer ljISFZM9ueE/1EDSK5TdClJX1jXed33VFF+Hy= remove
直接应用配置文件:
wg setconf wg0 /etc/wireguard/wg0.conf