Table of contents

WireGuard
- Setup Wireguard VPN on Linux and Windows 10
- Autostart on boot (using SystemD)

WireGuard
softwareopen_source

Url
https://www.wireguard.com/
Category
VPN
Really easy to setup on Linux.

On Linux kernel's mainline.

Simple configuration file format on Windows.
Whitepaper
https://www.wireguard.com/papers/wireguard.pdf
Design principles

Opinionated

Layer 3+ (no layer2 support)
UDP-based

Simple
low LOC count

Easily auditable
No dynamic allocations
Only 1 set of crypto protocols, if some are broken update, don't negotiate

Avoids keeping broken crypto, and downgrading

Stealthy
Only responds to encrypted packets
Simplicity interfaces

Uses a normal Linux network interfaces
Fail safe, not fail open
Endpoints roam, like in mosh
Identities are just static public keys
Each interface has

A private key
A listening UDP port
A list of peers

Each peer has

It's public IP
A list of associated tunnel IPs
Optionally, an endpoint IP&PORT

Setup Wireguard VPN on Linux and Windows 10
youtubevideo

On YT
https://www.youtube.com/watch?v=hR7KlUVA0zk
The addresses used on the linux setup (until the Endpoint= entry) is the local address to be used INSIDE the VPN, not the external ones.

Autostart on boot (using SystemD)

Considering that you have a /etc/wireguard/wg0.conf file:

sudo systemctl enable [--now] wg-quick@wg0

Reference
https://techoverflow.net/2021/07/02/how-to-autostart-wireguard-using-systemd-wg-quick/