Imprelemntation of Wirehole with Prometheus/Grafana monitoring and extra DNS over https by Cloudfare & IPsec for Linux compatability.
Check out new /rproxy/ branch. Allows you accessing web dashboards without entering internal VPN network only with public host IP
- Clone repo
- Enter folder
- Run the installation script
- Set Pihole upstream DNS to 172.24.0.7 if not set (from web UI)
- Set Prometheus as Grafana data source (from web UI)
- Import selected Grafana monitoring dashboards from file (from web UI)
git clone https://github.com/nnagibator228/Wirehole-Boosted.git
cd Wirehole-Boosted
chmod +x install_script.sh && ./install_script.sh
use sudo docker log <ipsec_container_id> command. In order to get IPsec container id, use docker container ls;
In order to add extra peers to wireguard, change PEERS env variable in compose file;
In order to add extra peers to ipsec, use VPN_ADDL_USERS=additional_username_1 additional_username_2 VPN_ADDL_PASSWORDS=additional_password_1 additional_password_2 fields as env variables;
After connecting to vpn tunnel, access 172.24.0.3/admin/;
After connecting to vpn tunnel, access 172.24.0.12:9090;
After connecting to vpn tunnel, access 172.24.0.4:3000;
After connecting to vpn tunnel, access 172.24.0.2:9586/metrics;
After connecting to vpn tunnel, access 172.24.0.8:9100/metrics;
After connecting to vpn tunnel, access 172.24.0.10:8080/metrics;
The default password for Pihole is set explicitly in docker-compose file as test123 It is strongly recommended to change it!
The default credetials for Grafana are admin:admin You will be prompted to change the default password after the first login.
Suitable Grafana dashboards as .json files could be found in dashboards/ folder in repository;
https://firebog.net/ - that blocklist connection list website. Taken from the original Wirehole repo;
