Hi @Qwerty It is simply. Using “Custom Install”, You can overwrite this version from 15 to 15.1
Because docker-compose.yml (see Github BigBearRepo link) is referencing image as:
ghcr.io/wg-easy/wg-easy:15
So docker images are not “in” BigBear CasaOS repo, but on Github docker hub (=ghcr.io). So just overwrite this piece of information (docker image version). And click OK, after that Your custom install will be processed.
wg-easy/wg-easy is developer of WG Easy, so 15.1 is here.
You can simply check every version via this command:
sudo docker pull ghcr.io/wg-easy/wg-easy:15.1
(and hit Ctrl+C to interrupt download of image…). Use GUI dialog “Custom Install” and no CLI is needed.
Thank you for the reply. I’m really new to working with home servers, and I don’t really understand how to do what you have written. I have tried to follow the instructions. I put the sudo command into ttydBridge and managed to get the image into Portainer. I then tried to add a container and pasted the gchr.io ending in :15.1 into docker.io and deployed the container. When it started up I had a message that the container was unhealthy and on ZimaOS home page it just showed a wireguard icon with Legacy written above it. I need a simple guide on how to do this written so an idiot can understand it. Or if you can provide a link that would be great and I will follow the instructions.
That’s it. You will download (and test) version 15.1
Last words
Note A
I may be getting ahead of myself, but this note can save a lot of disappointment and hours of testing…
VPN will works only if Your ISP do not use CGNAT. If Your ISP use it. You have only solution:
regularly pay for public ipv4 address to Your ISP
use IPv6 only (no pay, but ISP must have IPv6 support)
reverse ssh over public VPN server (You must pay VPN server)
Note B
Later, after You will be advanced user. You can popup Custom install dialog and completely make Your own app (test new version of existed on completely new from github using their docker images)
Custom dialog here is completely empty. So here is only for advanced user:
I already tried typing 15.1 in the tag box and it didn’t work.I retried and got message “You can’t log in with an insecure connection. Use HTTPS” despite adding environment variable INIT_INSECURE true. I also changed username and password and when trying to log in with this then got “Error Invalid username or password” My ISP does not use CGNAT.
qwerty.duck.com (I only guess, that duck dns has duck.com) is pointed to Your WAN IP address (public IPv4). And on Your router setup port forwarding. Everything what is incoming UDP 51820 to the router is forwarded to zimaOS:51820 (UDP only). Do not forward TCP 51821, You do not want to expose web interface of WG Easy to the Internet. If You use firewall on zimaOS, open incomming UDP port 51820 from gateway (local IP addr).
And all your ntbs/smart phone will connect VPN to qwerty.duck.com, UDP port 51820 (default).
Even the cheapest Wi-Fi router can do port forwarding. Sometimes it has different name, but do the same. Different name can be: Virtual Server, NAT rules, NAT Settings, Port Mapping, Application Rules or Port Triggering.
So connection is:
NET —- UDP 51820 → WAN router →forwarding to zimaOS in LAN (also incomming UDP 51820)
I can’t seem to get it to work. In settings on Zima for INIT_HOST should my value be myddnsserverdotcom(I don’t want to give the proper address on a public forum)? On my router I have port forwarding set up Protocol UDP, external port 51820, internal port is optional so I have left this blank, internal IP address is set as the IP of my Zima device(192.168.xx.xxx) When I tether my laptop to my mobile and turn on VPN I cannot access the web GUI for Zima or Wireguard. I imported config files to my laptop. Interface has listen port blank, DNS 1.1.1.1 and MTU 1420. Peer has Endpoint as myddnsserver.com:51820. Persistent keep alive =0. On the Wireguard web GUI on my desktop in Config I have Host set to myddnsserver address. Does this all seem okay or have I made a mistake somewhere? I have a VPN set up on my router. It doesn’t matter whether this is turned on or off, I still cannot connect or get the client to show the little red flashing ball. My ISP definitely does not use CGNAT, I called their technical department to ask this question.
