systems/infrastructure
1
Fork 0
Code Issues 1 Pull requests 12 Activity Actions
infrastructure/ansible/roles/ingress/tasks/wireguard.yml

30 lines
595 B
YAML
Raw Normal View History

Install and provision wireguard client on ingress server
2020-12-21 18:24:35 +00:00
- name: Install Wireguard
package:
Remove unnecessary use of `become` from some roles This should make execution much faster
2024-09-05 23:33:49 +01:00
name: wireguard
Install and provision wireguard client on ingress server
2020-12-21 18:24:35 +00:00
- name: Get wireguard credentials
set_fact:
ingress_wireguard: "{{ wireguard.clients.ingress }}"
- name: Wireguard config
template:
src: files/wireguard.conf
dest: /etc/wireguard/wg0.conf
mode: "0600"
backup: true
notify: restart wireguard
- name: Enable wireguard
service:
Swap out alpine for debian on ingress Mostly for future nebula deployment
2021-01-22 14:53:02 +00:00
name: wg-quick@wg0
Install and provision wireguard client on ingress server
2020-12-21 18:24:35 +00:00
enabled: true
- name: Enable p2p communication
sysctl:
name: net.ipv4.ip_forward
value: "1"
Update yamllint to fix dependency issue I think this still validates everything we need it to
2022-01-11 20:51:12 +00:00
sysctl_set: true
Install and provision wireguard client on ingress server
2020-12-21 18:24:35 +00:00
state: present
Update yamllint to fix dependency issue I think this still validates everything we need it to
2022-01-11 20:51:12 +00:00
reload: true
Install and provision wireguard client on ingress server
2020-12-21 18:24:35 +00:00
sysctl_file: /etc/sysctl.d/99-sysctl.conf
Reference in a new issue Copy permalink