我有一个 wireguard 配置;客户端是 Digital Ocean 上的服务器,服务器在其他地方。不在 Digital Ocean 中。我有以下针对服务器和客户端的 wireguard 配置:
服务器端:
[Interface]
Address = 10.15.15.1/24
ListenPort = 51824
PrivateKey = ********private key of server
PostUp = ip link set wg5000 master TEST1
[Peer]
PublicKey = *******pub key of client
AllowedIPs = 10.15.15.0/24
PersistentKeepalive = 25
客户:
[Interface]
Address = 10.15.15.2/32
ListenPort = 51824
PrivateKey = ******privaet key of client
[Peer]
Endpoint = public_ip_of_server:51824
PublicKey = *************pub key of server
AllowedIPs = 10.15.15.0/24
PersistentKeepalive = 25
从客户端 ping 到服务器:ping 10.15.15.1 超时从服务器 ping 到客户端:目标主机不可达。
服务器上的 wg show 命令:
interface: wg5000 public key: ************************** private key: (hidden) listening port: 51824 peer: ********************************** allowed ips: 10.15.15.0/24 persistent keepalive: every 30 seconds
客户:
interface: wg5000 publickey:**************************************** private key: (hidden) listening port: 51824 peer: ******************************* endpoint:public ip of server:51824 allowed ips: 10.15.15.0/24 transfer: 0 B received, 444 B sent persistent keepalive: every 30 seconds
有人能帮助我理解如何在不添加服务器对等部分端点的情况下完成这项工作吗?