#!/bin/bash
set -u
set -e

AddressAwg=172.16.0.1/24  # Adresse VPN Wireguard extremite A
EndpointA=172.16.0.122  # Adresse extremite A
PortA=51820             # Port ecoute extremite A
AddressBwg=172.16.0.2/24  # Adresse VPN Wireguard extremite B
EndpointB=172.16.0.121  # Adresse extremite B
PortB=51820             # Port ecoute extremite B

umask 077 ;
wg genkey > endpoint-a.key
wg pubkey < endpoint-a.key > endpoint-a.pub

wg genkey > endpoint-b.key
wg pubkey < endpoint-b.key > endpoint-b.pub

PKA=$(cat endpoint-a.key)
pKA=$(cat endpoint-a.pub)
PKB=$(cat endpoint-b.key)
pKB=$(cat endpoint-b.pub)

cat <<FINI > wg1-a.conf
# local settings for Endpoint A
[Interface]
PrivateKey = $PKA
Address = $AddressAwg
ListenPort = $PortA

# remote settings for Endpoint B
[Peer]
PublicKey = $pKB
Endpoint = ${EndpointB}:$PortB
AllowedIPs = $AddressBwg
FINI

cat <<FINI > wg1-b.conf
# local settings for Endpoint B
[Interface]
PrivateKey = $PKB
Address = $AddressBwg
ListenPort = $PortB

# remote settings for Endpoint A
[Peer]
PublicKey = $pKA
Endpoint = ${EndpointA}:$PortA
AllowedIPs = $AddressAwg
FINI