Update WG-Easy/Docker-Compose.yml

2025-10-01 21:57:15 +00:00
parent 00974de376
commit ef00ac0251
1 changed files with 22 additions and 35 deletions
@@ -1,42 +1,29 @@
 services:
  wg-easy:
-    environment:
-    #  Optional:
-    #  - PORT=51821
-    #  - HOST=0.0.0.0
-    #  - INSECURE=false
-       - DISABLE_IPV6=true
-       - WG_HOST=wireguard.gabesville.com
-       - WG_PORT=51822
-       - WG_MTU=1420
-
-    image: ghcr.io/wg-easy/wg-easy:latest
+    image: ghcr.io/wg-easy/wg-easy
    container_name: wg-easy         
-    networks:
-      wg:
-        ipv4_address: 10.42.42.42
+    environment:                    # Environment variables to configure the instance.
+      - LANG=en                     # Language settings.
+      - WG_HOST=                    # Public IP or domain name where WG-Easy is accessible.
+      - PASSWORD=                   # Password for accessing the WG-Easy web interface.
+      - PORT=51821                  # Port for the web interface.
+      - WG_PORT=51820               # WireGuard port for VPN traffic.
+      - WG_DEFAULT_ADDRESS=10.10.0.x
+      - WG_DEFAULT_DNS=192.168.X.X, 1.1.1.1
+    # - WG_MTU=1420
+    # - PORT=51821
+    # - WG_PORT=51820
+    # - WG_CONFIG_PORT=92820
+      - WG_ALLOWED_IPS=0.0.0.0/0, ::/0
    volumes:
-      - /srv/docker/wg-easy:/etc/wireguard # Volume mapping for WireGuard configuration files. 
-      - /lib/modules:/lib/modules:ro
+      - /srv/docker/wg-easy:/etc/wireguard   # Volume mapping for WireGuard configuration files.
    ports:
-      - "51822:51820/udp" # UDP port used by WireGuard.
-      - "51821:51821/tcp" # TCP port for accessing the web interface.
-    restart: unless-stopped
-    cap_add: # Capabilities required for managing networking features.
+      - "51820:51820/udp"           # UDP port used by WireGuard.
+      - "51821:51821/tcp"           # TCP port for accessing the web interface.
+    cap_add:                        # Capabilities required for managing networking features.
      - NET_ADMIN
      - SYS_MODULE
-      # - NET_RAW # ⚠️ Uncomment if using Podman
-    sysctls: # Kernel parameters that need to be set for WireGuard.
-      - net.ipv4.ip_forward=1
+    sysctls:                        # Kernel parameters that need to be set for WireGuard.
      - net.ipv4.conf.all.src_valid_mark=1
-      - net.ipv6.conf.all.disable_ipv6=0
-      - net.ipv6.conf.all.forwarding=1
-      - net.ipv6.conf.default.forwarding=1
-
-networks:
-  wg:
-    driver: bridge
-    ipam:
-      driver: default
-      config:
-        - subnet: 10.42.42.0/24
+      - net.ipv4.ip_forward=1
+    restart: unless-stopped