algo/roles/wireguard/files/wireguard.sh

#!/bin/sh

# PROVIDE: wireguard
# REQUIRE: LOGIN
# BEFORE:  securelevel
# KEYWORD: shutdown

. /etc/rc.subr

name="wg"
rcvar=wg_enable

command="/usr/local/bin/wg-quick"
start_cmd=wg_up
stop_cmd=wg_down
status_cmd=wg_status
pidfile="/var/run/$name.pid"
load_rc_config "$name"

: "${wg_enable=NO}"
: "${wg_interface=wg0}"

wg_up() {
  echo "Starting WireGuard..."
  /usr/sbin/daemon -cS -p "${pidfile}" "${command}" up "${wg_interface}"
}

wg_down() {
  echo "Stopping WireGuard..."
  "${command}" down "${wg_interface}"
}

wg_status () {
  not_running () {
    echo "WireGuard is not running on $wg_interface" && exit 1
  }
  if /usr/local/bin/wg show wg0; then
    echo "WireGuard is running on $wg_interface"
  else
    not_running
  fi
}

run_rc_command "$1"