Posted on November 3, 2020 at 11:54 am
Here are “iptables -S” rules for WireGuard VPN server:
-P INPUT ACCEPT -P FORWARD ACCEPT -P OUTPUT ACCEPT -A FORWARD -i ens2 -o wg0 -j ACCEPT -A FORWARD -i wg0 -j ACCEPT |
You can allow only safe IP addresses to use WireGuard (order is important):
iptables -A INPUT -s 1.2.3.4/32 -i ens2 -p udp -m udp --dport 51490 -j ACCEPT iptables -A INPUT -i ens2 -p udp -m udp --dport 51490 -j DROP |
First you add the ACCEPT rules and at the end you add the DROP rule.
Here is an example of final iptables rules:
-P INPUT ACCEPT -P FORWARD ACCEPT -P OUTPUT ACCEPT -A INPUT -s 1.2.3.4/32 -i ens2 -p udp -m udp --dport 50490 -j ACCEPT -A INPUT -i ens2 -p udp -m udp --dport 50490 -j DROP -A FORWARD -i ens2 -o wg0 -j ACCEPT -A FORWARD -i wg0 -j ACCEPT |
Overwrite 1.2.3.4 with your IP and change port 50490 accordingly.
You may also replace ens2 with your ethernet network interface (e.g eth0).
Updated on November 5, 2020 at 1:48 am
Other Posts
- Customer emails don't show up in Zendesk
- Get Windows 7, 8, 10 License Information
- Cheapest Alternatives to Mailchimp, Sendinblue, Sendgrid
- Convert InnoSetup EXE Installer to MSI
- Get Serial Number of CPU, RAM, Motherboard, HDD
- Get Number of Intel Processor Cores via Registry
- Zendesk Remove [Business Name] from Email Subject on Ticket Replies
- Best Text-to-Speech (TTS) Web Services with Human Voices
Updated Posts
- Exclude Packages from Apt-Get Upgrade on Debian Linux
- Should I reboot Debian server after apt-get upgrade?
- Download and Install OpenVPN Client on Windows 10
- How to List All Iptables NAT Rules
- How to List INPUT, FORWARD, OUTPUT Iptables Rules
- OpenVPN Iptables Rules
- Parse or Split FTP URL in Delphi XE using TIdURI
- Public FTP Server to Test Upload and Download