Unverified Commit c2a1c824 authored by cmulk's avatar cmulk Committed by GitHub
Browse files

Update README.md

Add sample docker-compose config
parent 5a35d9ec
...@@ -60,3 +60,30 @@ PersistentKeepalive = 25 ...@@ -60,3 +60,30 @@ PersistentKeepalive = 25
## Other Notes ## Other Notes
- This Docker image also has a iptables NAT (MASQUERADE) rule already configured to make traffic through the VPN to the Internet work. - This Docker image also has a iptables NAT (MASQUERADE) rule already configured to make traffic through the VPN to the Internet work.
- For some clients (a GL.inet) router in my case, you may have trouble with HTTPS (SSL/TLS) due to the MTU on the VPN. Ping and HTTP work fine but HTTPS does not for some sites. This can be fixed with [MSS Clamping](https://www.tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.cookbook.mtu-mss.html). This is simply a checkbox in the OpenWRT Firewall settings interface. - For some clients (a GL.inet) router in my case, you may have trouble with HTTPS (SSL/TLS) due to the MTU on the VPN. Ping and HTTP work fine but HTTPS does not for some sites. This can be fixed with [MSS Clamping](https://www.tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.cookbook.mtu-mss.html). This is simply a checkbox in the OpenWRT Firewall settings interface.
## docker-compose
Sample docker-compose.yml
```
version: "2"
services:
vpn:
image: wireguard:local
build: github.com/cmulk/wireguard-docker
volumes:
- data:/etc/wireguard
networks:
- net
ports:
- 5555:5555/udp
restart: unless-stopped
cap_add:
- NET_ADMIN
- SYS_MODULE
networks:
net:
volumes:
data:
driver: local
```
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment