diff --git a/common/wireguard/templates/webserver.conf b/common/wireguard/templates/webserver.conf
new file mode 100644
index 0000000000000000000000000000000000000000..e3b21d7c6aab4133c6f6b7f50a5a7794ca6dcc8a
--- /dev/null
+++ b/common/wireguard/templates/webserver.conf
@@ -0,0 +1,8 @@
+[Interface]
+PrivateKey = {{ privatekey }}
+Address = 10.43.1.1 
+ListenPort = 51821
+
+[Peer]
+PublicKey = 9FLaGBXWjInPv4PFRuAJPPrPWruzocVrXg9lsmwGdX4=
+AllowedIPs = 10.43.1.2, 192.168.0.0/24, 10.0.0.0/23
diff --git a/site.yml b/site.yml
index 7bdc0b3dcba465deecbc4e0fa0760bc387c521f6..afe0ed360a8bf0bb973e25ce3f09dd4b3e421a36 100644
--- a/site.yml
+++ b/site.yml
@@ -154,6 +154,7 @@
     - { role: common/kvm-guest, tags: kvm-guest }
     - { role: common/openvpn, tags: openvpn }
     - { role: common/prometheus-node, tags: prometheus-node }
+    - { role: common/wireguard, tags: wireguard }
     - { 
         role: common/docker_dockerstats, tags: dockerstats, 
         servicename: dockerstats,