setting up wireguard i’ve discovered two issues.
- Adding a (validated and known working) private-key to the interface using the private-key option seems to take no affect.
set interfaces wireguard wg01 address ‘192.168.2.2/24’
set interfaces wireguard wg01 port ‘51820’
set interfaces wireguard wg01 private-key ‘private-key-here’
Wireguard private-key not found! Execute: "run generate wireguard [default-keypair|named-keypairs]"
- Not able to set the peers endpoint (as described in the wiki https://wiki.vyos.net/wiki/Wireguard vyos should be the client):
set interfaces wireguard wg01 peer SERVER Possible completions: address IP address of tunnel remote end + allowed-ips IP addresses allowed to traverse the peer disable disables peer persistent-keepalive Interval to send keepalive messages port Port number used to establish connection preshared-key base64 encoded preshared key pubkey base64 encoded public key
There is no endpoint option at all, also trying to set it despite the possible completions returns:
Configuration path: interfaces wireguard wg01 peer SERVER [endpoint] is not valid.
Tested with 1.3-rolling-202011180217 and 1.3-rolling-202101040217