From 26de91b7eed5dff9ac2f07c1f7848ceebdaa2f77 Mon Sep 17 00:00:00 2001
From: david <davidfolkesmd@gmail.com>
Date: Mon, 12 Jan 2026 09:23:19 -0500
Subject: [PATCH] first commit

---
 wg-easy.container | 26 ++++++++++++++++++++++++++
 wg-easy.network   |  3 +++
 2 files changed, 29 insertions(+)
 create mode 100644 wg-easy.container
 create mode 100644 wg-easy.network

diff --git a/wg-easy.container b/wg-easy.container
new file mode 100644
index 0000000..7c061cf
--- /dev/null
+++ b/wg-easy.container
@@ -0,0 +1,26 @@
+[Container]
+ContainerName=wg-easy
+Image=ghcr.io/wg-easy/wg-easy:15
+AutoUpdate=registry
+
+Volume=/etc/containers/volumes/wg-easy:/etc/wireguard:Z
+Network=wg-easy.network
+PublishPort=51820:51820/udp
+PublishPort=51821:51821/tcp
+
+# this is used to allow access over HTTP
+# remove this when using a reverse proxy
+Environment=INSECURE=true
+
+AddCapability=NET_ADMIN
+AddCapability=SYS_MODULE
+AddCapability=NET_RAW
+Sysctl=net.ipv4.ip_forward=1
+Sysctl=net.ipv4.conf.all.src_valid_mark=1
+Sysctl=net.ipv6.conf.all.disable_ipv6=0
+Sysctl=net.ipv6.conf.all.forwarding=1
+Sysctl=net.ipv6.conf.default.forwarding=1
+
+[Install]
+# this is used to start the container on boot
+WantedBy=default.target
diff --git a/wg-easy.network b/wg-easy.network
new file mode 100644
index 0000000..50f222a
--- /dev/null
+++ b/wg-easy.network
@@ -0,0 +1,3 @@
+[Network]
+NetworkName=wg-easy
+IPv6=true