Wireguard

Client Configuration:

Generate key pair for encryption:

umask 077; wg genkey | tee privatekey | wg pubkey > publickey


Generate server config wg.conf (should look something like this):

[Interface]

PrivateKey = <client-private-key>

Address = 10.0.0.1/24

DNS = 1.1.1.1, 8.8.8.8


[Peer]

PublicKey = <server-public-key>

PresharedKey = <preshared-key>

Endpoint = www.nchar.com:51820

PersistentKeepalive = 25

AllowedIPs = 192.168.0.1/24,192.168.1.1/24,10.0.0.0/24


Import new WireGuard Connection:

nmcli connection import type wireguard file <path/to/wireguard.conf>


Connect to WireGuardVPN:

nmcli connection up <wireguard-config-name>


Disconnect from WireGuardVPN:

nmcli connection down <wireguard-config-name>


Delete connection:

nmcli connection delete id <connection-name>


Enable/Disable Auto-connect:

nmcli connection modify <wireguard-config-name> autoconnect no|yes

IE: nmcli connection modify HomeVPN autoconnect no


Show status of connection:

wg show





https://www.youtube.com/watch?v=IvGjWndvTk0