vps/wg-easy/docker-compose.yaml

volumes:
  etc_wireguard:

services:
  wg-easy:
    environment:
    #  Optional:
#      - PORT=30351
    #  - HOST=0.0.0.0
      - INSECURE=true

    image: ghcr.io/wg-easy/wg-easy:15.3.0
    container_name: wg-easy
    networks:
       overlay_net:
        ipv4_address: 11.101.0.1
    volumes:
      - ./config:/etc/wireguard
      - /lib/modules:/lib/modules:ro
    ports:
      - "30351:30351/udp"
      - "30777:51821/tcp"
    restart: unless-stopped
    cap_add:
      - NET_ADMIN
      - SYS_MODULE
      # - NET_RAW # ⚠️ Uncomment if using Podman
    sysctls:
      - net.ipv4.ip_forward=1
      - net.ipv4.conf.all.src_valid_mark=1
      - net.ipv6.conf.all.disable_ipv6=0
      - net.ipv6.conf.all.forwarding=1
      - net.ipv6.conf.default.forwarding=1


networks:
  overlay_net:
    external: true
first commit 2026-05-22 09:23:27 +00:00			`volumes:`
			`etc_wireguard:`

			`services:`
			`wg-easy:`
			`environment:`
			`# Optional:`
			`# - PORT=30351`
			`# - HOST=0.0.0.0`
			`- INSECURE=true`

			`image: ghcr.io/wg-easy/wg-easy:15.3.0`
			`container_name: wg-easy`
			`networks:`
			`overlay_net:`
			`ipv4_address: 11.101.0.1`
			`volumes:`
			`- ./config:/etc/wireguard`
			`- /lib/modules:/lib/modules:ro`
			`ports:`
			`- "30351:30351/udp"`
			`- "30777:51821/tcp"`
			`restart: unless-stopped`
			`cap_add:`
			`- NET_ADMIN`
			`- SYS_MODULE`
			`# - NET_RAW # ⚠️ Uncomment if using Podman`
			`sysctls:`
			`- net.ipv4.ip_forward=1`
			`- net.ipv4.conf.all.src_valid_mark=1`
			`- net.ipv6.conf.all.disable_ipv6=0`
			`- net.ipv6.conf.all.forwarding=1`
			`- net.ipv6.conf.default.forwarding=1`


			`networks:`
			`overlay_net:`
			`external: true`