群晖synology客户端配置首
10 December 2023
群晖Synology客户端配置
-
首先下载 synology-wireguard , 安装详细参见: https://github.com/vegardit/synology-wireguard 与 https://suzuhafan.com/synology/synology-920-install-wireguard-on-dsm7.html ;
-
安装
# 下载
wget https://github.com/vegardit/synology-wireguard/releases/download/WireGuard-1.0.20220627-DSM7.1/WireGuard-geminilake-1.0.20220627_DSM7.1.spk
# 安装
synopkg install WireGuard-geminilake-1.0.20220627_DSM7.1.spk
# start 脚本生成wg0.conf配置文件, 添加并加 interface & peer 节点信息
/var/packages/WireGuard/scripts/start
# 把 wg0.conf 复制到 /etc/wireguard/ 目录下,如果/etc/wireguard目录不存在就手动建一个
cp /volume1/@appconf/WireGuard/wg0.conf /etc/wireguard/wg0.conf
wg-autostart enable wg0
注:wg0.conf
[Interface]
PrivateKey = xxxxxxxxxxxxxxxx
Address = 10.10.10.7/24
# Don't add the DNS = x.x.x.x because setting is unsupported, otherwise would report "resolvconf: command not found"
# DNS = 8.8.8.8
PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o ovs_eth0 -j MASQUERADE;
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o ovs_eth0 -j MASQUERADE;
[Peer]
PublicKey = XXXXXXXXXXXXxxxxxx
PresharedKey = XXXXXxxxXXXXXXxxxxx
AllowedIPs = 10.10.10.0/24
PersistentKeepalive = 25
Endpoint = 121.40.x.x:51820
启动
/var/packages/WireGuard/scripts/start
- 启动配置
# 启动 sudo wg-quick up wg0 # 关闭 sudo wg-quick down wg0 - 查看连接状态
sudo wg show wg0 - 设置开机启动,群晖上面该命令和 Linux 有区别
# 开启 sudo wg-autostart enable wg0 # 关闭 sudo wg-autostart disable wg0
DS918 v7.1上安装
wget https://www.blackvoid.club/content/files/2022/08/WireGuard-apollolake-1.0.20220627.spk
sudo synopkg install WireGuard-apollolake-1.0.20220627.spk