From 73d0621dcad1db5a717b1c1d94e1c65abdc5e627 Mon Sep 17 00:00:00 2001
From: olli <olli@ds9.dedyn.io>
Date: Sat, 10 Jun 2023 12:57:33 +0200
Subject: [PATCH] =?UTF-8?q?=E2=80=9Ewireguard.yml=E2=80=9C=20=C3=A4ndern?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 wireguard.yml | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/wireguard.yml b/wireguard.yml
index c4fe32b..c58dee0 100644
--- a/wireguard.yml
+++ b/wireguard.yml
@@ -150,8 +150,8 @@
                 - BIND_ADDRESS=192.168.41.1:5000
                 - WGUI_ENDPOINT_ADDRESS=wireguard-tor.{{inventory_hostname}}
                 - WGUI_USERNAME=wgadmin
-                - WGUI_MANAGE_START=true
-                - WGUI_MANAGE_RESTART=true
+                - WGUI_MANAGE_START=false
+                - WGUI_MANAGE_RESTART=false
                 - WGUI_DNS=2a02:2970:1002::18,46.182.19.48
                 - WGUI_MTU=1450
                 - WGUI_CONFIG_FILE_PATH=/etc/wireguard/wg0.conf
@@ -162,8 +162,10 @@
                 - WGUI_SERVER_POST_DOWN_SCRIPT
                 - WGUI_DEFAULT_CLIENT_USE_SERVER_DNS=true
                 - WGUI_DEFAULT_CLIENT_ENABLE_AFTER_CREATION=true
-                # route all but priate ipv4 networks (expect 192.168.44.0/24) through wireguard
-                - WGUI_DEFAULT_CLIENT_ALLOWED_IPS=::/0,0.0.0.0/5,8.0.0.0/7,11.0.0.0/8,12.0.0.0/6,16.0.0.0/4,32.0.0.0/3,64.0.0.0/2,128.0.0.0/3,160.0.0.0/5,168.0.0.0/8,169.0.0.0/9,169.128.0.0/10,169.192.0.0/11,169.224.0.0/12,169.240.0.0/13,169.248.0.0/14,169.252.0.0/15,169.255.0.0/16,170.0.0.0/7,172.0.0.0/12,172.32.0.0/11,172.64.0.0/10,172.128.0.0/9,173.0.0.0/8,174.0.0.0/7,176.0.0.0/4,192.0.0.0/9,192.128.0.0/11,192.160.0.0/13,192.168.44.0/24,192.169.0.0/16,192.170.0.0/15,192.172.0.0/14,192.176.0.0/12,192.192.0.0/10,193.0.0.0/8,194.0.0.0/7,196.0.0.0/6,200.0.0.0/5,208.0.0.0/4,224.0.0.0/3
+                # route all incl. Internet traffic
+                - WGUI_DEFAULT_CLIENT_ALLOWED_IPS=::/0,0.0.0.0/0
+                # route all but priate ipv4 networks (expect 192.168.44.0/24) through wireguard - not working
+                #- WGUI_DEFAULT_CLIENT_ALLOWED_IPS=::/0,0.0.0.0/5,8.0.0.0/7,11.0.0.0/8,12.0.0.0/6,16.0.0.0/4,32.0.0.0/3,64.0.0.0/2,128.0.0.0/3,160.0.0.0/5,168.0.0.0/8,169.0.0.0/9,169.128.0.0/10,169.192.0.0/11,169.224.0.0/12,169.240.0.0/13,169.248.0.0/14,169.252.0.0/15,169.255.0.0/16,170.0.0.0/7,172.0.0.0/12,172.32.0.0/11,172.64.0.0/10,172.128.0.0/9,173.0.0.0/8,174.0.0.0/7,176.0.0.0/4,192.0.0.0/9,192.128.0.0/11,192.160.0.0/13,192.168.44.0/24,192.169.0.0/16,192.170.0.0/15,192.172.0.0/14,192.176.0.0/12,192.192.0.0/10,193.0.0.0/8,194.0.0.0/7,196.0.0.0/6,200.0.0.0/5,208.0.0.0/4,224.0.0.0/3
               volumes:
                 - ./db:/app/db
                 - /etc/wireguard:/etc/wireguard