wireguard: Create network manager connection

Signed-off-by: James Valleroy <jvalleroy@mailbox.org> Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>
2026-03-11 09:04:54 +00:00 · 2019-09-15 12:29:19 -04:00 · 2019-09-15 12:29:19 -04:00 · 64165c5fbd
commit 64165c5fbd
parent aed82eca1b
1 changed files with 22 additions and 0 deletions
--- a/actions/wireguard
+++ b/actions/wireguard
@ -159,6 +159,28 @@ def subcommand_add_server(arguments):
        ['ip', 'link', 'add', 'dev', new_interface_name, 'type', 'wireguard'],
        check=True)

+    connection_name = 'WireGuard-' + new_interface_name
+    subprocess.run(['nmcli', 'con', 'add',
+                    'con-name', connection_name,
+                    'ifname', new_interface_name,
+                    'type', 'wireguard'], check=True)
+
+    subprocess.run(['nmcli', 'con', 'modify', connection_name,
+                    'connection.autoconnect', 'TRUE'], check=True)
+
+    subprocess.run(['nmcli', 'con', 'modify', connection_name,
+                    'connection.zone', 'internal'], check=True)
+
+    subprocess.run(['nmcli', 'con', 'modify', connection_name,
+                    'ipv4.method', 'manual',
+                    'ipv4.addresses', arguments.client_ip + '/24'], check=True)
+
+    with open('/var/lib/freedombox/wireguard/privatekey') as private_key_file:
+        private_key = private_key_file.read().strip()
+
+    subprocess.run(['nmcli', 'con', 'modify', connection_name,
+                    'wireguard.private-key', private_key], check=True)
+
    args = ['wg', 'set', new_interface_name, 'peer', arguments.public_key]
    if arguments.pre_shared_key:
        args += ['preshared-key', arguments.pre_shared_key]