@vgaetera, hello!
Your Copr is: https://copr.fedorainfracloud.org/coprs/vgaetera/extras/ .
Please tell me dude, can I use AmneziaWG from your Copr to bypass Roskomnadzor’s restrictions?
How should I install it? Is it graphical UI or not?
This is a CLI tool similar to wg-quick:
wg-quick: set up a WireGuard interface simply | Man Page | System Administration | wireguard-tools | ManKier
AFAIK, there’s no integration with NetworkManager.
It requires building a kernel module with DKMS.
If you need Secure Boot, also enroll the MOK key.
This is how it works for me:
# Install DKMS
sudo dnf install dkms openssl
sudo systemctl enable dkms.service
sudo systemctl restart dkms.service
# Enroll MOK key
MOK_PASSWD="fedora"
sudo dkms generate_mok
sudo mokutil -i /var/lib/dkms/mok.pub << EOI
${MOK_PASSWD}
${MOK_PASSWD}
EOI
sudo systemctl reboot
# Install AmneziaWG
sudo dnf install amneziawg-tools
sudo tee /etc/amnezia/amneziawg/client.conf << EOF > /dev/null
...
EOF
sudo systemctl enable awg-quick@client.service
sudo systemctl restart awg-quick@client.service
I tested both server and client instances in a F43 VM and the handshake succeeds.
Whether you manage to bypass the restrictions is a different story.
Thank you pal!
Hi @vgaetera
there is a problem right now with the amnezia-wg dkms module being incompatible with linux kernel 6.19. there is a patch that fixes it (compat: fix compilation on kernels >= 6.19 (blake2s API change) by noctuum · Pull Request #145 · amnezia-vpn/amneziawg-linux-kernel-module · GitHub) but it is still not merged even though more than 2 weeks have passed. Could you include that patch in your copr build of amnezia module? Without it the module is unusable on fedora.
Confirmed the issue and applied the patch, check for updates:
sudo dnf upgrade --refresh