wireguard gateway works now (it is quite ugly though)

author: Christian Pointner <equinox@spreadspace.org> 2020-02-29 03:29:26 +0100
committer: Christian Pointner <equinox@spreadspace.org> 2020-02-29 03:29:26 +0100
commit: a895214d8fe4b515fbef15a7f919c5177543ac56 (patch)
tree: 41a93a5a55c1065468510af6b47b8108fc898803 /inventory/host_vars/ele-gwhetzner.yml
parent: revert last commit (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/inventory/host_vars/ele-gwhetzner.yml b/inventory/host_vars/ele-gwhetzner.yml
index aeaa936f..f68ff783 100644
--- a/inventory/host_vars/ele-gwhetzner.yml
+++ b/inventory/host_vars/ele-gwhetzner.yml
@@ -44,6 +44,14 @@ wireguard_gateway_tunnels:
     priv_key: "{{ wireguard_keys.elemedia.priv }}"
     addresses:
     - 192.168.254.1/30
+    ip_snat:
+      interface: "{{ network.primary.interface }}"
+      to: "{{ network.primary.overlay }}"
+    port_forwardings:
+    - dest: "{{ network.primary.overlay }}"
+      tcp_ports:
+        80: 192.168.254.2:80
+        443: 192.168.254.2:443
     peers:
     - pub_key: "{{ hostvars['ele-media'].wireguard_keys.gwhetzner.pub }}"
       allowed_ips:
author	Christian Pointner <equinox@spreadspace.org>	2020-02-29 03:29:26 +0100
committer	Christian Pointner <equinox@spreadspace.org>	2020-02-29 03:29:26 +0100
commit	a895214d8fe4b515fbef15a7f919c5177543ac56 (patch)
tree	41a93a5a55c1065468510af6b47b8108fc898803 /inventory/host_vars/ele-gwhetzner.yml
parent	revert last commit (diff)