From 73629c402a19444e4c5dd1d08ff0a484cb130954 Mon Sep 17 00:00:00 2001 From: Christian Pointner Date: Fri, 28 Feb 2020 23:27:11 +0100 Subject: added role wireguard/gateway --- inventory/host_vars/ele-gwhetzner.yml | 17 +++++++++++++++++ inventory/host_vars/ele-media.yml | 6 ++++++ 2 files changed, 23 insertions(+) (limited to 'inventory') diff --git a/inventory/host_vars/ele-gwhetzner.yml b/inventory/host_vars/ele-gwhetzner.yml index 254f0b8a..aeaa936f 100644 --- a/inventory/host_vars/ele-gwhetzner.yml +++ b/inventory/host_vars/ele-gwhetzner.yml @@ -31,3 +31,20 @@ network: overlay: "{{ (hostvars[vm_host].vm_host.network.bridges.public.overlay.prefix | ipaddr(hostvars[vm_host].vm_host.network.bridges.public.overlay.offsets[inventory_hostname])).split('/')[0] }}" external_ip: "{{ network.primary.overlay }}" + + +wireguard_keys: + elemedia: + pub: "1GdTR5ehIcSVvwdWWsKitRjzcm1gY3Z9ASzJAuN7VH0=" + priv: "{{ vault_wireguard_priv_keys.elemedia }}" + +wireguard_gateway_tunnels: + wg-elemedia: + description: Elevate Media Server (media.elevate.at) + priv_key: "{{ wireguard_keys.elemedia.priv }}" + addresses: + - 192.168.254.1/30 + peers: + - pub_key: "{{ hostvars['ele-media'].wireguard_keys.gwhetzner.pub }}" + allowed_ips: + - 192.168.254.2/32 diff --git a/inventory/host_vars/ele-media.yml b/inventory/host_vars/ele-media.yml index d471683e..a0a388e9 100644 --- a/inventory/host_vars/ele-media.yml +++ b/inventory/host_vars/ele-media.yml @@ -66,3 +66,9 @@ nextcloud_lvm: lv: ncdata size: 150G fs: ext4 + + +wireguard_keys: + gwhetzner: + pub: "YO78lnFJdlGnKxBrtVZF4QXF7bpF8rAP7yF97klWLzg=" + priv: "{{ vault_wireguard_priv_keys.gwhetzner }}" -- cgit v1.2.3