Skip to main content

Wireguard On Kali Linux

What Is Wireguard?


Wireguard is a open-source software application and protocol that implements Virtual Private Network (VPN) Techniques to create secure point-to-point connections in routed or bridged configurations. It is run as module inside the linux kernel and aims for better performance than IPsec and openvpn tunneling protocols.


Getting Started With Wireguard On Kali Linux -

As Wireguard is  added to kali linux repositories, it can be simply Installed with terminal -

 apt install wireguard resolvconf

As the installation completes, next step is to configure wireguard to use it.
So, We Need To generate public/private key pair and set up initial config file -

wg genkey | tee privatekey | wg pubkey > publickey
umask u=rwx,go= && cat > /etc/wireguard/wg0.conf << EOF
[Interface]
Address = 10.222.222.1/24
SaveConfig = true
ListenPort = 51820
PrivateKey = -SERVER PRIVATE KEY-

[Peer]
PublicKey = -CLIENT PUBLIC KEY-
AllowedIPs = 10.222.222.2/32
EOF

 And We Do the Same Process on the client to establish its key pair and config -

wg genkey | tee privatekey | wg pubkey > publickey
umask u=rwx,go= && cat /etc/wireguard/wg0.conf  << EOF
[Interface]
Address = 10.222.222.2/32
PrivateKey = -CLIENT PRIVATE KEY-
DNS = 8.8.8.8

[Peer]
PublicKey = -SERVER PUBLIC KEY-
Endpoint = public.ip.of.server:51820
AllowedIPs = 0.0.0.0/0
PersistentKeepalive = 21
EOF

It is Pretty Simple to turn off and on the tunnel -

# The VPN can be enabled using
wg-quick up wg0
# To disable the VPN:
wg-quick down wg0
# Information about the connection can be retrieved with following command:
wg show

And of Course, We Need to enable IP masquerade and IP Forwarding on the server -

/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward


After this we need Some minor Changes to our configs. First Up on the server we Changed "allowedIPs" line to have the private network on the report site. This would look like so: -

[Interface]
Address = 10.222.222.1/24
SaveConfig = true
ListenPort = 51820
PrivateKey = -SERVER PRIVATE KEY-

[Peer]
PublicKey = -CLIENT PUBLIC KEY-
AllowedIPs = 10.200.200.2/32, 192.168.2.0/24

Now After Changing that One Line on the server, We then tweak the clients "AllowedIPs" line to remove the option to route everything to the VPN Server -

[Interface]
Address = 10.200.200.2/32
PrivateKey = -CLIENT PRIVATE KEY-
DNS = 8.8.8.8

[Peer]
PublicKey = -SERVER PUBLIC KEY-
Endpoint = public.ip.of.server:51820
AllowedIPs = 10.200.200.0/24
PersistentKeepalive = 21

And That's It -

root@kali:~# ping 192.168.2.22
PING 192.168.2.22 (192.168.2.22) 56(84) bytes of data.
64 bytes from 192.168.2.22: icmp_seq=19 ttl=63 time=50.2 ms
64 bytes from 192.168.2.22: icmp_seq=20 ttl=63 time=53.4 ms
64 bytes from 192.168.2.22: icmp_seq=21 ttl=63 time=48.1 ms


Now The VPN Server Can access the subnets on the sides of the wireguard VPN.

Comments

Post a Comment

Popular Posts

How to Use Any Software for Free After Trial

How To Use Any Software After Trial For Free  How Does Trial Software Work? Whenever we Install Trial Version Software in our computer system, then it make many entries like date, time, etc in the registry of system, So When we run this trial Software it compares current date and time with date and time in registry. So After Trial Period It Blocks User from accessing the features of the software. The Best 3 ways to use the software  1. Using Trial Software with Run as Date Run as Date is utility that allows you to Run the software on the date and time you specify. Best Thing about it is that, It doesn't change the system date and time but only inject the date and time to the particular software. Steps To Use the Run as Date Software are as follows :- i) You need to download the utility, You can Use the Link provided Below to do so,   Download Run as Date -  RunAsDate for x32                                              RunAsDate for x64 ii) Open the Run as Dat
Post a Comment
Read more

How To Play Android Games on PC

How To Play Android Games on your PC Smartphone Gaming is becoming new trend with the increase of quality, graphics, and types of games available on the app store. But Some People face issues like the small screens of smartphones, as they want a bigger screen, better controls and a better performance, So they want to play games on PC but  all the games aren't available on windows so How can we do so? Luckily, We have a way to Do So... The Best Way to do So Is to use the Android Emulator on PC. There are not much options available in the list but Bluestacks 3 is the one well known name in the field. Let's Jump on to the process to use it. Note:- Performance of Games on Emulator Depends on the specifiations of PC you are using. Setting Up The Bluestacks 3 Installing Bluestacks 3 is a very Easy Process. You Need to Download the Bluestacks Offline installer f rom the official  Bluestacks  website and run it. The Program is quite large (approx 500MB) and may take few minu
Post a Comment
Read more