Warezjoe/ansible_uni_deploy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Vars revision for wireguard server

Browse Source
This commit is contained in:
warezjoe
2026-02-27 10:48:56 +01:00
parent 7755d8d686
commit 5c216a00ba
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

BIN
group_vars/.all.yml.swp
View File

Binary file not shown.

8
roles/wireguard_server/templates/wireguardserver.conf
View File

@@ -1,13 +1,13 @@
[Interface] [Interface]
PrivateKey = {{ wireguard-server.key }} PrivateKey = {{ wireguard-server-vault.key }}
Address=10.0.0.1/24 Address=10.0.0.1/24
PostUp=iptables -A FORWARD -i wireguardserver -o ens18 -j ACCEPT; iptables -A FORWARD -i ens18 -o wireguardserver -j ACCEPT; iptables -t nat -A POSTROUTING -o ens18 -j MASQUERADE; PostUp=iptables -A FORWARD -i wireguardserver -o ens18 -j ACCEPT; iptables -A FORWARD -i ens18 -o wireguardserver -j ACCEPT; iptables -t nat -A POSTROUTING -o ens18 -j MASQUERADE;
PostDown=iptables -D FORWARD -i wireguardserver -o ens18 -j ACCEPT; iptables -D FORWARD -i ens18 -o wireguardserver -j ACCEPT; iptables -t nat -D POSTROUTING -o ens18 -j MASQUERADE; PostDown=iptables -D FORWARD -i wireguardserver -o ens18 -j ACCEPT; iptables -D FORWARD -i ens18 -o wireguardserver -j ACCEPT; iptables -t nat -D POSTROUTING -o ens18 -j MASQUERADE;
ListenPort={{ wireguard-server.internal-port }} ListenPort={{ wireguard-server.internal-port }}
{% for user in wireguard %} {% for user in wireguard-client %}
[Peer] [Peer]
PublicKey = {{ wireguard.user.pub }} PublicKey = {{ wireguard-client-vault.user.pub }}
AllowedIPs = {{ wireguard.user.ip }}/32 AllowedIPs = {{ wireguard-client.user.ip }}/32
{% endfor %} {% endfor %}