better support p2p connections

2020-11-07 00:18:48 +01:00 · 2020-11-07 00:18:48 +01:00 · 3f3ed2fe15
commit 3f3ed2fe15
parent d5858fe595
2 changed files with 22 additions and 11 deletions
--- a/templates/networkinterface.j2
+++ b/templates/networkinterface.j2
@ -1,20 +1,29 @@
 auto wg_{{ item.name }}
-iface wg_{{ item.name }} inet static
-{% for i in item.ip %}
-	address {{ i }}
-{% endfor %}
+iface wg_{{ item.name }} inet manual
+	post-down ip link del $IFACE
 	pre-up ip link add $IFACE type wireguard || true
 	pre-up wg setconf $IFACE /etc/wireguard/$IFACE.conf
-{% for i in item.route %}
-	up ip route add {{ i }} dev $IFACE
+{% if item.route|length == 1 and item.ip|length == 1%}
+	pre-up ip a add {{ item.ip[0] }} peer {{ item.route[0] }} dev $IFACE
+	up ip route replace {{ item.route[0] }} src {{ item.ip[0].split('/')[0] }} dev $IFACE
+{% else %}
+{% for i in item.ip %}
+	pre-up ip a add {{ i }} dev $IFACE
 {% endfor %}
-	post-down ip link del $IFACE
+{% for i in item.route %}
+	up ip route replace {{ i }} dev $IFACE
+{% endfor %}
+{% endif %}

-iface wg_{{ item.name }} inet6 static
-	# static IP address 
+iface wg_{{ item.name }} inet6 manual
+{% if item.route6|length == 1 and item.ip6|length == 1%}
+	pre-up ip -6 a add {{ item.ip6[0] }} peer {{ item.route6[0] }} dev $IFACE
+	up ip -6 route replace {{ item.route6[0] }} src {{ item.ip6[0].split('/')[0] }} dev $IFACE
+{% else %}
 {% for i in item.ip6 %}
-	address {{ i }}
+	pre-up ip -6 a add {{ i }} dev $IFACE
 {% endfor %}
 {% for i in item.route6 %}
-	up ip -6 route add {{ i }} dev $IFACE
+	up ip -6 route replace {{ i }} dev $IFACE
 {% endfor %}
+{% endif %}