wireguard/templates/wg0.conf.j2

[Interface]
Address = {{ wireguard_server_CIDR }}
SaveConfig = true
PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o {{ wireguard_iface_name }} -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o {{ wireguard_iface_name }} -j MASQUERADE
ListenPort = 51900
PrivateKey = {{ wireguard_server_privkey }}

{% for client in wireguard_clients %}
[Peer]
PublicKey = {{ client.pubkey }}
AllowedIPs = {{ client.ipv4 }}

{% endfor %}
Initial commit 2022-07-27 11:45:46 +02:00			`[Interface]`
			`Address = {{ wireguard_server_CIDR }}`
			`SaveConfig = true`
			`PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o {{ wireguard_iface_name }} -j MASQUERADE`
			`PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o {{ wireguard_iface_name }} -j MASQUERADE`
			`ListenPort = 51900`
			`PrivateKey = {{ wireguard_server_privkey }}`

			`{% for client in wireguard_clients %}`
			`[Peer]`
			`PublicKey = {{ client.pubkey }}`
			`AllowedIPs = {{ client.ipv4 }}`

			`{% endfor %}`