From c048e6d20e32fb6bf34e30f11a3185d0e6c9d169 Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sat, 24 Apr 2021 21:19:04 +0100
Subject: [PATCH] Provision `walker`

---
 ansible/group_vars/all/nebula.yml           |  2 ++
 ansible/hosts                               |  1 +
 ansible/main.yml                            |  7 +++++++
 ansible/roles/nebula/files/certs/walker.crt | 20 ++++++++++++++++++++
 ansible/roles/nebula/files/certs/walker.key | 11 +++++++++++
 terraform/walker_vps.tf                     |  5 ++++-
 6 files changed, 45 insertions(+), 1 deletion(-)
 create mode 100644 ansible/roles/nebula/files/certs/walker.crt
 create mode 100644 ansible/roles/nebula/files/certs/walker.key

diff --git a/ansible/group_vars/all/nebula.yml b/ansible/group_vars/all/nebula.yml
index 49f5306..08bed71 100644
--- a/ansible/group_vars/all/nebula.yml
+++ b/ansible/group_vars/all/nebula.yml
@@ -5,5 +5,7 @@ nebula:
       ip: 10.23.2.1
     grimes:
       ip: 10.23.2.3
+    walker:
+      ip: 10.23.2.4
     ingress:
       ip: 10.23.2.5
diff --git a/ansible/hosts b/ansible/hosts
index f0fed82..9d6b446 100644
--- a/ansible/hosts
+++ b/ansible/hosts
@@ -9,3 +9,4 @@ pve-docker
 jellyfin
 forrest
 qbittorrent
+walker
diff --git a/ansible/main.yml b/ansible/main.yml
index 1210905..d0a089f 100644
--- a/ansible/main.yml
+++ b/ansible/main.yml
@@ -16,6 +16,7 @@
     - grimes
     - ingress
     - qbittorrent
+    - walker
   roles:
     - role: geerlingguy.ntp
       become: true
@@ -28,6 +29,7 @@
     - grimes
     - pve-docker
     - forrest
+    - walker
   roles:
     - role: geerlingguy.docker
       become: true
@@ -41,6 +43,7 @@
 - hosts:
     - grimes
     - pve-docker
+    - walker
   roles:
     - traefik
 
@@ -87,3 +90,7 @@
 - hosts: qbittorrent
   roles:
     - qbittorrent
+
+- hosts: walker
+  roles:
+    - nebula
diff --git a/ansible/roles/nebula/files/certs/walker.crt b/ansible/roles/nebula/files/certs/walker.crt
new file mode 100644
index 0000000..1280c5c
--- /dev/null
+++ b/ansible/roles/nebula/files/certs/walker.crt
@@ -0,0 +1,20 @@
+$ANSIBLE_VAULT;1.1;AES256
+62613030333861376363373831343030363236303265346261613565656661623166343462383564
+6536656631633963623166653235396634313432623036370a303865633866346331316461643930
+33633739366434353037333931653265623236373465383137306139633635633531643538383339
+3263313561333038650a383433373561656537363939306633393734363830333935633764323036
+66303863623936343239363938333665373335313164376265336662656265306436653766383266
+65343733616265653232343337363031326435653531353962363438646631653630316431333166
+36363764653534626133363631346635666665653836383735613530623537363539393033373734
+38623363356639323939373434326136356638633262613235636232383232366263333030326230
+63643837353733373665663137666161636339643461396538363465323566656339633461303631
+63653563373037303166613364653531376337343133326138386438313165646536346130303830
+30646332346537663136306138636366663566303733383432393537613937643730623765633764
+62373230376636336632383265643863306336393266363636643436613163613761663464313463
+62653765346238343530626539323933333833633639633230613038656330646363633166303063
+30313136663035373636343864626231613766653361633937303563323530326465653133303038
+34336433646534343638393530383661333036616331316134313362393662316339623731666132
+33306161333761353562383030323165623566613737663538313531373134613834613565383336
+30316130343137373537393338386532613763323763623637666130393035626462613132653339
+65333862336133333839306530353165663764666130643263616661643836343934313331663163
+383563373561373932353537623065643963
diff --git a/ansible/roles/nebula/files/certs/walker.key b/ansible/roles/nebula/files/certs/walker.key
new file mode 100644
index 0000000..9a31ba5
--- /dev/null
+++ b/ansible/roles/nebula/files/certs/walker.key
@@ -0,0 +1,11 @@
+$ANSIBLE_VAULT;1.1;AES256
+33383339366463623838653336343938633539353939326561663761663331363465383830633030
+6432366561666130393363366339313162653733346337630a356535396562333364363165323736
+36363335313530663331383266663536646236386439323465336163343462663963626464373737
+3831666265643432640a376137303764323434313361346330343039623062646665396235316662
+64333463326132346436613331373337656364333538653864616131636638336437376537373537
+37666539653435636133656365616636633534323636623462643734653061653662356333386232
+31373834376465663035366139373235613433626330613139333462666232393733346630346432
+64343431326539376430616532393261383464326531643032303638613231356337303938313365
+31313037356132643132393032313038313439366462343462373163333435376166343161656131
+3938323631333731626364383864333232303134383566343763
diff --git a/terraform/walker_vps.tf b/terraform/walker_vps.tf
index 28455d2..a639a2d 100644
--- a/terraform/walker_vps.tf
+++ b/terraform/walker_vps.tf
@@ -2,7 +2,10 @@ module "walker_firewall" {
   source = "./vultr_firewall/"
 
   description = "walker"
-  ports       = []
+  ports = [
+    "80/tcp",
+    "443/tcp"
+  ]
 }