How to Set Up Wireguard VPN on Linux

Blog posts How to Set Up Wireguard VPN on Linux
Blog posts

How to Set Up Wireguard VPN on Linux

August 2, 2024

Virtual Private Networks (VPNs) have become an essential tool for maintaining online privacy and security. WireGuard is a modern VPN protocol that offers a fast, secure, and easy-to-use solution for setting up a VPN on Linux systems. In this article, we will guide you through the process of setting up WireGuard VPN on Linux.

Step 1: Install WireGuard

The first step in setting up WireGuard on Linux is to install the necessary software. You can do this by running the following command in your terminal:

sudo apt-get install wireguard

This command will install the WireGuard software package on your Linux system.

Step 2: Generate Public and Private Keys

Next, you will need to generate public and private keys for the VPN server and client. You can do this by running the following commands in your terminal:

wg genkey | tee privatekey | wg pubkey > publickey

Replace "privatekey" and "publickey" with the names of the files where you want to save the keys. Repeat this process for both the server and client machines.

Step 3: Configure the WireGuard Interface

Now, you will need to create a configuration file for the WireGuard interface on both the server and client machines. Here is an example configuration file for the server:

[Interface]
Address = 10.0.0.1/24
PrivateKey = <SERVER_PRIVATE_KEY>
ListenPort = 51820

[Peer]
PublicKey = <CLIENT_PUBLIC_KEY>
AllowedIPs = 10.0.0.2/32
Endpoint = <CLIENT_IP>:51820

And here is an example configuration file for the client:

[Interface]
Address = 10.0.0.2/32
PrivateKey = <CLIENT_PRIVATE_KEY>

[Peer]
PublicKey = <SERVER_PUBLIC_KEY>
AllowedIPs = 10.0.0.1/24
Endpoint = <SERVER_IP>:51820

Replace "", "", "", "", "", and "" with the relevant information for your server and client machines.

Step 4: Start the WireGuard Interface

Finally, you can start the WireGuard interface on both the server and client machines by running the following command in your terminal:

sudo ip link add dev wg0 type wireguard
sudo ip addr add 10.0.0.1/24 dev wg0
sudo wg set wg0 private-key <SERVER_PRIVATE_KEY>
sudo wg set wg0 listen-port 51820
sudo ip link set up dev wg0

Replace "" with the private key for the server machine.

And on the client machine, run the following command:

sudo ip link add dev wg0 type wireguard
sudo ip addr add 10.0.0.2/32 dev wg0
sudo wg set wg0 private-key <CLIENT_PRIVATE_KEY>
sudo ip link set up dev wg0

Replace "" with the private key for the client machine.

That’s it! You have successfully set up WireGuard VPN on Linux. You can now connect to the VPN server from the client machine and enjoy a secure and private online experience.

Tags: 455455455