From 21926f9696c187f3a496391d4a9132c5629828d9 Mon Sep 17 00:00:00 2001
From: Johan <johan.followit@gmail.com>
Date: Sun, 24 Mar 2024 10:18:19 +0100
Subject: [PATCH] Update documentation

---
 BashScripts/README.md | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/BashScripts/README.md b/BashScripts/README.md
index abee6ab..9cb9f24 100644
--- a/BashScripts/README.md
+++ b/BashScripts/README.md
@@ -44,6 +44,23 @@ curl -sSL https://install.pi-hole.net | bash
 
 And update ```/etc/samba/smb.conf``` with ```dns forwarder = <IP-of-pi.hole>``` and make sure the DHCP uses the dc as DNS.
 
+## Install Wireguard
+
+```bash
+sudo su -c "bash <(wget -qO- https://git.myspace.nu/MySpace/Docs/raw/branch/master/BashScripts/install-wireguard-server.sh)"
+```
+Add user
+```bash
+wg-adduser.sh
+```
+Allow single user full LAN access, add this to `/etc/wireguard/wg0.conf`. `-s 192.168.200.3` is the source (client) IP address. Iptables rules are evaluated from top to bottom, looking for the first match. The rest of the rules will be ignored.
+```
+PostUp = iptables -A FORWARD -i %i -s 192.168.200.3/32 -j ACCEPT
+...
+PostDown = iptables -D FORWARD -i %i -s 192.168.200.3/32 -j ACCEPT
+```
+
+
 
 ## Install VM Tweaks