WireGuard VPN

Step-by-Step Guide to Setting Up WireGuard VPN on Ubuntu 24.04 with Manual Configuration

Philip Jensen

3 min read

Step-by-Step Guide to Setting Up WireGuard VPN on Ubuntu 24.04 with Manual Configuration

At ByteHosting, we understand the importance of secure and reliable VPN solutions for both personal and business use. If you're looking to set up a robust VPN on your Ubuntu 24.04 server, WireGuard is an excellent choice due to its simplicity, speed, and security. In this comprehensive tutorial, we will walk you through the process of manually configuring WireGuard VPN on Ubuntu 24.04 from scratch. This approach ensures you have full control over your VPN setup, optimizing both security and performance.

Prerequisites: VPS with Ubuntu 24.04 and Root Access

Before we begin, ensure you have a VPS or dedicated server running Ubuntu 24.04. We recommend using one of our cost-effective VPS plans in Frankfurt, Germany, for optimal performance. You will also need root or sudo privileges to install packages and modify configuration files.

Installing WireGuard Package

The first step is to install the WireGuard package. Ubuntu 24.04 includes WireGuard in its official repositories, making installation straightforward. Run the following commands:

sudo apt update
sudo apt install wireguard

This command installs the latest stable version of WireGuard compatible with Ubuntu 24.04.

Generating Server and Client Keys

Next, we generate cryptographic keys for both the server and the client. These keys are essential for establishing a secure VPN tunnel.

Generate Server Keys

wg genkey | sudo tee /etc/wireguard/server_private.key | wg pubkey | sudo tee /etc/wireguard/server_public.key

This creates a private key and a public key for the server, stored securely in the /etc/wireguard directory.

Generate Client Keys

Similarly, generate keys for your client device:

wg genkey | tee ~/client_private.key | wg pubkey | tee ~/client_public.key

Keep these keys safe, especially the private keys, as they are critical for security.

Configuring WireGuard Server and Client Files

Now, we set up the configuration files for both server and client. Let's start with the server.

Server Configuration

Create the server configuration file:

sudo nano /etc/wireguard/wg0.conf

Insert the following configuration, replacing placeholders with your actual keys and network details:

[Interface]
Address = 10.0.0.1/24
ListenPort = 51820
PrivateKey = <server_private_key>

# Peer (Client)
[Peer]
PublicKey = <client_public_key>
AllowedIPs = 10.0.0.2/32

Replace <server_private_key> with the content of /etc/wireguard/server_private.key and <client_public_key> with the client's public key.

Client Configuration

Create a configuration file on your client device:

[Interface]
Address = 10.0.0.2/24
PrivateKey = <client_private_key>

[Peer]
PublicKey = <server_public_key>
Endpoint = your_server_ip:51820
AllowedIPs = 0.0.0.0/0, ::/0
PersistentKeepalive = 25

Replace placeholders with your actual keys and server IP address.

Enabling and Starting the WireGuard Service

With configurations in place, enable and start the WireGuard interface:

sudo systemctl enable wg-quick@wg0
sudo systemctl start wg-quick@wg0

This activates the VPN service, and it will automatically start on boot.

Testing the VPN Connection

Verify your VPN is working by checking the interface status:

sudo wg show

You should see your peer connected, and data transfer should be active. Test connectivity by pinging the server from your client device:

ping 10.0.0.1

If you receive responses, your VPN is successfully set up.

Troubleshooting Common Connectivity Issues

  • Firewall blocking UDP port 51820: Ensure your server's firewall allows incoming UDP traffic on port 51820.
  • Incorrect keys or IP addresses: Double-check all keys and IP configurations for typos.
  • Service not running: Use sudo systemctl status wg-quick@wg0 to verify the service status and restart if necessary.

Conclusion

Setting up WireGuard VPN on Ubuntu 24.04 manually provides a secure and high-performance solution for your networking needs. By following our step-by-step guide, you gain full control over your VPN configuration, ensuring optimal security and speed. At ByteHosting, we are committed to providing reliable hosting solutions, and a well-configured VPN is a vital part of a secure infrastructure. Whether you’re managing a small business or securing personal data, WireGuard on Ubuntu 24.04 is an excellent choice. If you need a VPS to host your VPN or other services, explore our affordable plans in Frankfurt, Germany, and get started today.

Read more