{ "firewall": { "name": { "WAN_LOCAL": { "rule": { "20": { "action": "accept", "description": "Autorise WireGuard", "destination": { "port": "51820" }, "protocol": "udp" } } } }, "group": { "network-group": { "remote_user_vpn_network": { "description": "Sous-reseau pour les utilisateurs VPN", "network": [ "10.2.1.0/24" ] } } } }, "interfaces": { "wireguard": { "wg0": { "description": "VPN pour les clients distants", "address": [ "10.2.1.1/24" ], "firewall": { "in": { "name": "LAN_IN" }, "local": { "name": "LAN_LOCAL" }, "out": { "name": "LAN_OUT" } }, "listen-port": "51820", "mtu": "1500", "peer": [{ "pubPHONEcachemFX05sOYBvTNj2D1Klx3B3Y06ExP0s=": { "allowed-ips": [ "10.2.1.2/32" ], "persistent-keepalive": 25 } }, { "pubPC-042cachemFX07sWy9vBNj2Z1H44D03NurEFdOa=": { "allowed-ips": [ "10.2.1.5/32" ], "persistent-keepalive": 25 } }], "private-key": "/config/auth/wireguard/wg_private.key", "route-allowed-ips": "true" } } } }