wg-easy.container

[Container]
ContainerName=wg-easy
Image=ghcr.io/wg-easy/wg-easy:15
AutoUpdate=registry

Volume=/etc/containers/volumes/wg-easy:/etc/wireguard:Z
Network=wg-easy.network
PublishPort=51820:51820/udp
PublishPort=51821:51821/tcp

# this is used to allow access over HTTP
# remove this when using a reverse proxy
Environment=INSECURE=true

AddCapability=NET_ADMIN
AddCapability=SYS_MODULE
AddCapability=NET_RAW
Sysctl=net.ipv4.ip_forward=1
Sysctl=net.ipv4.conf.all.src_valid_mark=1
Sysctl=net.ipv6.conf.all.disable_ipv6=0
Sysctl=net.ipv6.conf.all.forwarding=1
Sysctl=net.ipv6.conf.default.forwarding=1

[Install]
# this is used to start the container on boot
WantedBy=default.target
first commit 2026-01-12 09:23:19 -05:00			`[Container]`
			`ContainerName=wg-easy`
			`Image=ghcr.io/wg-easy/wg-easy:15`
			`AutoUpdate=registry`

			`Volume=/etc/containers/volumes/wg-easy:/etc/wireguard:Z`
			`Network=wg-easy.network`
			`PublishPort=51820:51820/udp`
			`PublishPort=51821:51821/tcp`

			`# this is used to allow access over HTTP`
			`# remove this when using a reverse proxy`
			`Environment=INSECURE=true`

			`AddCapability=NET_ADMIN`
			`AddCapability=SYS_MODULE`
			`AddCapability=NET_RAW`
			`Sysctl=net.ipv4.ip_forward=1`
			`Sysctl=net.ipv4.conf.all.src_valid_mark=1`
			`Sysctl=net.ipv6.conf.all.disable_ipv6=0`
			`Sysctl=net.ipv6.conf.all.forwarding=1`
			`Sysctl=net.ipv6.conf.default.forwarding=1`

			`[Install]`
			`# this is used to start the container on boot`
			`WantedBy=default.target`