rajannpatel / Pi-Hole-on-Google-Compute-Engine-Free-Tier-with-Full-Tunnel-and-Split-Tunnel-Wireguard-VPN-Configs

Run your own privacy-first ad blocking service at home, or in the cloud for free with Google Cloud Services.
MIT License
767 stars 76 forks source link

Not able to run the script, possible to see sample configs for split tunnel? #31

Closed burty-tech closed 4 months ago

burty-tech commented 4 years ago

I already have a server with full tunnel working. Trying to set up a split tunnel profile and hoping to learn how to do it manually.

spinpwr commented 1 year ago

This is decided by the client config. There is one line under the [Peer] block called AllowedIPs what decides.

So a full tunnel:

[Peer]
PublicKey = <hidden>
PresharedKey = <hidden>
Endpoint = 34.17.17.17:51515
AllowedIPs = 0.0.0.0/0, ::/0

Split tunnel:

[Peer]
PublicKey = <hidden>
PresharedKey = <hidden>
Endpoint = 34.17.17.17:51515
AllowedIPs = 10.66.66.1/32, fd42:42:42::1/128

On android(tv) is also possible to split the traffic based on apps:

[Interface]
PrivateKey = <hidden>
Address = 10.66.66.2/24, fd42:42:42::2/64
DNS = 10.66.66.1, fd42:42:42::1
MTU = 1380
IncludedApplications = org.xbmc.kodi