¶ WG_Easy部署
docker compose.yaml
services:
wg-easy:
container_name: wg-easy
image: ghcr.io/wg-easy/wg-easy:15.2.0
restart: unless-stopped
hostname: wg-easy
ports:
- 51820:51820/udp
- 8121:51821/tcp
volumes:
- $PWD/config:/etc/wireguard
cap_add:
- NET_ADMIN
- SYS_MODULE
sysctls:
- net.ipv4.conf.all.src_valid_mark=1
- net.ipv4.ip_forward=1
environment:
- WG_EASY_HOST=vpn.abitacc.com
- WG_EASY_PASSWORD=$WG_PASSWORD
- DISABLE_IPV6=true
networks:
default:
name: shared_default
external: true
注意:
51820:51820/udp端口映射需要host和container两侧一致,否则容器内的wg0网卡需要魔改iptable配置,尝试了一下8120:51820/udp映射,测试不通,所以不折腾了。- ECS上需要把51820端口放开,frp里面需要使用udp类型映射51820端口
容器起来之后,访问http://localhost:8121页面,进行简单配置:添加管理账号,设置VPN允许IP和添加VPN客户端等,如下图所示:
¶ References
- https://awesome-docker-compose.com/apps/vpn/wireguard/wg-easy
- https://github.com/wg-easy/wg-easy
- https://wg-easy.github.io/wg-easy/latest/