diff options
author | Christian Pointner <equinox@spreadspace.org> | 2020-02-29 03:29:26 +0100 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2020-02-29 03:29:26 +0100 |
commit | a895214d8fe4b515fbef15a7f919c5177543ac56 (patch) | |
tree | 41a93a5a55c1065468510af6b47b8108fc898803 /inventory/host_vars/ele-media.yml | |
parent | revert last commit (diff) |
wireguard gateway works now (it is quite ugly though)
Diffstat (limited to 'inventory/host_vars/ele-media.yml')
-rw-r--r-- | inventory/host_vars/ele-media.yml | 17 |
1 files changed, 16 insertions, 1 deletions
diff --git a/inventory/host_vars/ele-media.yml b/inventory/host_vars/ele-media.yml index a0a388e9..ea298088 100644 --- a/inventory/host_vars/ele-media.yml +++ b/inventory/host_vars/ele-media.yml @@ -12,7 +12,7 @@ network: mask: "{{ network_zones.lan.prefix | ipaddr('netmask') }}" gateway: "{{ network_zones.lan.gateway }}" -network_setup: r3-with-lan # elevate-festival +network_setup: elevate-festival dyndns: @@ -72,3 +72,18 @@ wireguard_keys: gwhetzner: pub: "YO78lnFJdlGnKxBrtVZF4QXF7bpF8rAP7yF97klWLzg=" priv: "{{ vault_wireguard_priv_keys.gwhetzner }}" + +wireguard_gateway_tunnels: + wg-gwhetzner: + priv_key: "{{ wireguard_keys.gwhetzner.priv }}" + addresses: + - 192.168.254.2/30 + default_gateway: + outer: 178.63.180.138 + inner: 192.168.254.1 + peers: + - pub_key: "{{ hostvars['ele-gwhetzner'].wireguard_keys.elemedia.pub }}" + endpoint: 178.63.180.138:51820 # TODO: fix this variable "{{ hostvars['ele-gwhetzner'].external_ip }}" + keepalive_interval: 15 + allowed_ips: + - 0.0.0.0/0 |