openvpn: initial support for server/client

author: Christian Pointner <equinox@spreadspace.org> 2021-11-16 22:34:30 +0100
committer: Christian Pointner <equinox@spreadspace.org> 2021-11-16 22:34:30 +0100
commit: 65fb49fc5f3e4628353ee2e54c5ced76c5bc40fa (patch)
tree: 94ae7cb1810ccdfd732c2c71036578d226d08166 /roles/network/openvpn/client/tasks/main.yml
parent: openvpn roles - bas scaffolding and certs (diff)
1 files changed, 11 insertions, 3 deletions
diff --git a/roles/network/openvpn/client/tasks/main.yml b/roles/network/openvpn/client/tasks/main.yml
index 49f6443f..3067609c 100644
--- a/roles/network/openvpn/client/tasks/main.yml
+++ b/roles/network/openvpn/client/tasks/main.yml
@@ -2,6 +2,14 @@
 - name: create TLS certificate and key
   import_tasks: tls.yml
 
-## TODO:
-## - generate/install openvpn configuration
-## - enable/start "openvpn-server@{{ openvpn_zone.name }}"
+- name: generate openvpn config
+  template:
+    src: conf.j2
+    dest: "/etc/openvpn/client/{{ openvpn_zone.name }}.conf"
+  notify: restart openvpn-client
+
+- name: make sure openvpn-client systemd unit is enabled and started
+  systemd:
+    name: "openvpn-client@{{ openvpn_zone.name }}"
+    state: started
+    enabled: yes
author	Christian Pointner <equinox@spreadspace.org>	2021-11-16 22:34:30 +0100
committer	Christian Pointner <equinox@spreadspace.org>	2021-11-16 22:34:30 +0100
commit	65fb49fc5f3e4628353ee2e54c5ced76c5bc40fa (patch)
tree	94ae7cb1810ccdfd732c2c71036578d226d08166 /roles/network/openvpn/client/tasks/main.yml
parent	openvpn roles - bas scaffolding and certs (diff)