WireGuard® is an extremely simple yet fast and modern VPN thatutilizes state-of-the-art cryptography. It aims to be faster, simpler,leaner, and more useful than IPsec, while avoiding the massive headache.It intends to be considerably more performant than OpenVPN.
Run from browser
V 18.0
V 17.1
GitHub
Stable version: 18.0 (changelog)
This TurnKey Linux VPN software appliance leverages the open sourceWireGuard® software (installed from Debian repositories). It also includescustom TurnKey configuration tools to support ease of setup. It canlink 2 otherwise unconnected LANs and/or secure traffic across publicand/or insecure wifi connections and/or provide a secure solution forremote work scenarios.
This appliance includes all the standard features in TurnKey Core,and on top of that:
- WireGuard® configurations:
- Initialization hooks to configure common WireGuard® deployments,server key and confgiuration.
- Deployments include convenience scripts to add clients/profiles,generating all required config.
- Expiring obfuscated HTTPS urls can be created for clients todownload their profiles (especially useful with mobile devicesusing a QR code scanner).
See the Set up documentation for further details on how to set it up.
Note: WireGuard® and the "WireGuard" logo are registered trademarks ofJason A. Donenfeld. TurnKey Linux is not affiliated with Jason A. Donenfeldor WireGuard®. Neither this software appliance, or the TurnKey provided,custom configuration scripts are endorsed by Jason A. Donenfeld orWireGuard®.
Usage details & Logging in for Administration
No default passwords: For security reasons there are no default passwords.All passwords are set at system initialization time.
Ignore SSL browser warning: browsers don't like self-signed SSLcertificates, but this is the only kind that can be generatedautomatically. If you have a domain configured, then via Confconsole Advanced menu, you can generatefree Let's Encypt SSL/TLS certificates.
Web - point your browser at either:
- http://12.34.56.789/ - not encrypted so no browser warning
- https://12.34.56.789/ - encrypted with self-signed SSL certificate
Note: some appliances auto direct http to https.
Username for OS system administration:
Login as root except on AWS marketplace whichuses username admin.
- Point your browser to:
- https://12.34.56.789:12321/ - System control panel
- https://12.34.56.789:12320/ - Web based command line terminal
- Login with SSH client:
ssh [email protected]
Special case for AWS marketplace:
ssh [email protected]
* Replace 12.34.56.789 with a valid IP or hostname.