Configure WireGuard VPN

WireGuard will now be installed on the sentry and Raspberry Pi. WireGuard is a peer-to-peer connection, but for convience the sentry will be called the server and the Pi will be called the client.

By default, the private VPN IP network is 10.13.16.1/24, with static IP addresses assigned for each peer:

Sentry WireGuard server : 10.13.16.1
Raspberry Pi WireGuard client : 10.13.16.2

The sentry can support up to 252 additional VPN clients, having consecutive IP addresses 10.13.16.3 through 10.13.16.254.

graph LR;
    Internet[Internet Users] -->|Access| Sentry[Sentry Traefik]

subgraph Docker1
    Client1[Traefik 1]
end
subgraph Docker2
    Client2[Traefik 2]
end
subgraph Docker3
    Client3[Traefik 3]
end

Sentry <-->|VPN Tunnel| Client1
Sentry <-->|VPN Tunnel| Client2
Sentry <-->|VPN Tunnel| Client3

Index

Configure sentry wireguard server
Configure Raspberry Pi WireGuard client