WireGuard Connector
  • 03 Nov 2020
  • 2 Minutes To Read
  • Contributors
  • Print
  • Dark
    Light

WireGuard Connector

  • Print
  • Dark
    Light

This article describes how to install a WireGuard based connector on a Linux server in your organization instead of creating a tunnel between your server and your Firewall/Router.


  • Configuring the connector at the Management Platform
  • Configuring the connector on your local Linux machine
  • Verifying the connector is up

Please follow the steps below:

Configuring the connector at the Management Platform

  1. Under Networks in the Management Platform on the left side, select the name of the network in which you'd like to set the tunnel. Locate the desired gateway, Select the three-dotted menu (...) and select Add Tunnel.


360004305679ScreenShot2019-08-27at1406156.png


The following window displays:


3600043516402.png


  1. Select Perimeter 81 Connector, then select Continue.
  2. Make sure you have an Ubuntu 16.04/18.04 LTS, or equivalent instance set within your local network or VPC, then select Next.


  1. Enter a Name of your choice, and the Endpoint, meaning the IP address from which the Linux server is connecting to the internet, accompanied by the correlating Subnet range (the values in the attached image are for demonstration only).
  2. Select Next.

Note: You can query the Endpoint by executing the following command in your Linux terminal.

dig +short myip.opendns.com @resolver1.opendns.com


3600044072794.png


  1. Select Confirm and Apply, then wait until the deployment is finished (this may take several minutes).

Configuring the connector on your local Linux machine

Make sure the machine that we'll be hosting the connector meets the following requirements:
Ubuntu
  • Your kernel is up to date
  • The following packages are installed:
    • curl
    • dig
    • software-properties-common

CentOS

  • Your kernel is up to date
  • The following packages are installed:
    • curl
    • bind-utils

Important

  • If you're not sure you possess the appropriate image installation files, you can find them here (Ubuntu 18.04).
  • Whenever you upgrade your kernel, make sure to reboot it afterward. 

1. You should now see the connector under the Network section. Select the three-dotted menu (...) besides its icon, then select Configure. A similar window will open (the displayed command varies from connector to connector):


  1. Copy the command.
  2. Run the command that you copied (select Yes at Stage 4).
  3. Follow the instructions during the connector installation on the Linux server.

Verifying the connector is up

  1. Connect to your Perimeter 81 server with the designated app (you can do it on any machine ).


360004370499ScreenShot2019-08-29at152550.png


  1. Open the terminal and run the following command:

ping XXXX.XXXX.XXXX.XXXX

(replace with one of the internal resources in your organization)
3. If the ping command fails, please make sure that port UDP/8000 is not blocked in your firewall/router, and that you went through all the steps.

4. If the issue persists, please contact our support services attaching the logs. These can be found at the following paths:

##Configuration file
/etc/wireguard/wg0.conf

##Connection logs
/tmp/p81-wg-connector.log