On a client computer, create a new configuration file in the /etc/wireguard directory.
<pre><code class="lang-yaml">sudo nano /etc/wireguard/wg0.conf
</code></pre>
Then add the following to that file. Remember to set the client private key and server public key to their corresponding places and also include your WireGuard server’s public IP address.
<pre><code class="lang-yaml">[Interface]
Address = 10.0.0.2/32
PrivateKey = &lt;contents-of-client-privatekey&gt;
DNS = 1.1.1.1

[Peer]
PublicKey = &lt;contents-of-server-publickey&gt;
Endpoint = &lt;server-public-ip&gt;:51820
AllowedIPs = 0.0.0.0/0, ::/0
</code></pre>
Note that setting AllowedIPs to 0.0.0.0/0, ::/0 will forward all traffic over the WireGuard VPN connection. If you want to only use WireGuard for specific destinations, set their IP address ranges in the list separated by a comma.
Once you’ve set the keys and the server address, save the file and exit the editor.
Start the connection with the command below.
<pre><code class="lang-yaml">sudo wg-quick up wg0
</code></pre>
You can also use the system command to start WireGuard as a service.
<pre><code class="lang-yaml">sudo systemctl start wg-quick@wg0
</code></pre>
Then when you want to disconnect, use either of the following commands depending on which method you used to start it.
<pre><code class="lang-yaml">sudo wg-quick down wg0
sudo systemctl stop wg-quick@wg0
</code></pre>
WireGuard will then disconnect from the server and remove the related network setting

On a client computer, create a new configuration file in the /etc/wireguard directory.

```yaml
sudo nano /etc/wireguard/wg0.conf
```

Then add the following to that file. Remember to set the client private key and server public key to their corresponding places and also include your WireGuard server’s public IP address.

```yaml
[Interface]
Address = 10.0.0.2/32
PrivateKey = <contents-of-client-privatekey>
DNS = 1.1.1.1

[Peer]
PublicKey = <contents-of-server-publickey>
Endpoint = <server-public-ip>:51820
AllowedIPs = 0.0.0.0/0, ::/0
```

Note that setting AllowedIPs to 0.0.0.0/0, ::/0 will forward all traffic over the WireGuard VPN connection. If you want to only use WireGuard for specific destinations, set their IP address ranges in the list separated by a comma.

Once you’ve set the keys and the server address, save the file and exit the editor.

Start the connection with the command below.

```yaml
sudo wg-quick up wg0
```

You can also use the system command to start WireGuard as a service.

```yaml
sudo systemctl start wg-quick@wg0
```

Then when you want to disconnect, use either of the following commands depending on which method you used to start it.

```yaml
sudo wg-quick down wg0
sudo systemctl stop wg-quick@wg0
```

WireGuard will then disconnect from the server and remove the related network setting

How to configure Wireguard client