Are you tired of having to juggle the control lines to manage your Wireguard VPN? I totally understand you! This is why today we are going to explore together WG-Easya solution that via a graphical interface, will allow you to manage your VPN connections in a few clicks, generate QR codes for your mobile customers, and see in real time that is connected.
This solution takes everything you need, namely a preconfigured Wireguard server, an intuitive and reactive web interface, integrated monitoring features, an ultra simple customer management system, a dark/light automatic mode as well as a socket In charge of the Gravatar avatars
Installation is a real breeze thanks to Docker and only one command is enough to start:
docker run --detach \
--name wg-easy \
--env WG_HOST=VOTRE_IP_SERVEUR \
--env PASSWORD_HASH='VOTRE_HASH_BCRYPT' \
--env WG_PORT=51820 \
--volume ~/.wg-easy:/etc/wireguard \
--publish 51820:51820/udp \
--publish 51821:51821/tcp \
--cap-add NET_ADMIN \
--cap-add SYS_MODULE \
--sysctl 'net.ipv4.conf.all.src_valid_mark=1' \
--sysctl 'net.ipv4.ip_forward=1' \
--restart unless-stopped \
ghcr.io/wg-easy/wg-easy
Simply replace VOTRE_IP_SERVEUR by the public IP address of your server (or a dynamic domain name) and generate your VOTRE_HASH_BCRYPT To secure the administration interface.
Like that, no need to handle configuration files by hand! The interface allows you to create new customers in a few clicks, activate/deactivate access instantly, delete obsolete configurations, download configuration files and display QR codes for quick configuration on mobile
The dashboard clearly displays:
- Customers currently logged in
- Data transfer statistics
- Traffic graphics for each user
- The general state of the server
WG-EASY does not forget security either with password protection from the admin interface, a support for single-use links to share configurations, the possibility of defining expiration dates for customers and Metrics Prometheus for advanced monitoring
You can adjust many settings via environmental variables. For example, WG_MTU allows you to configure the optimal MTU for your network, WG_DEFAULT_DNS allows you to define your favorite DNS servers, WG_ALLOWED_IPS allows you to control traffic routing, UI_TRAFFIC_STATS Activates/deactivate detailed statistics, WG_DEVICE to specify the network interface to be used and WG_ENABLE_EXPIRES_TIME activate the expiration of customer accounts.
The interface is available in several languages. Just define the variable LANG With the desired language code:
--env LANG=fr
And to update the latest version, it’s very simple:
docker stop wg-easy
docker rm wg-easy
docker pull ghcr.io/wg-easy/wg-easy
Then stimulate the container with the same parameters as in installation.
And don’t forget:
- Save regularly The ~/.wg-Easy folder which contains all your configurations
- Use a domain name rather than IP for more flexibility
- Activate the metrics Prometheus To monitor the health of your server
- Configure automatic backups of your configurations
- Consult the Wiki For specific use cases
WG-EASY integrates perfectly into a wider administration stack while offering you a WIREGUARD management with small onions, without having to be an online command expert to administer your VPN effectively!
A big thank you to Lorenper for sharing this excellent solution!
Source link
Subscribe to our email newsletter to get the latest posts delivered right to your email.
Comments