forked from linuxserver/docker-wireguard
-
-
Notifications
You must be signed in to change notification settings - Fork 48
Synology
bart edited this page Apr 18, 2022
·
3 revisions
After installing Wireguard on synology, the following variables need to be set appropriately for nordlynx to work:
ALLOWED_IPS=0.0.0.0/1,128.0.0.0/1"POST_UP=ip -4 route add $$(wg | awk -F'[: ]' '/endpoint/ {print $$5}') via $$(ip route | awk '/default/ {print $$3}')""PRE_DOWN=ip -4 route del $$(route -n | awk '/255.255.255.255/ {print $$1}') via $$(ip route | awk '/default/ {print $$3}')"
The above settings extend the required configuration that is described in the README (e.g. one also has to provide the ALLOWED_IPS).
Clarification:
-
ALLOWED_IPScan not be0.0.0.0/0for Synology, so we split the full range into two halves. -
POST_UPadds a route for directing all traffic to the NordVPN server endpoint to the gateway (otherwise it gets stuck). -
PRE_DOWNremoves the custom route above (needed for reconnect). Since the endpoint may have changed during the connection, we cannot extract its address fromwglike we did inPOST_UP.
Further clarification is provided in https://github.com/bubuntux/nordlynx/discussions/41, which is also open for suggestions to improve the setup.