From 86a0559f228b0c709ae6774d46bacb277d18f472 Mon Sep 17 00:00:00 2001
From: jabertwo <git@jabertwo.de>
Date: Fri, 16 Jun 2023 18:12:09 +0200
Subject: [PATCH] manage all wireguard tunnels via ansible

---
 common/wireguard/templates/webserver.conf | 8 ++++++++
 site.yml                                  | 1 +
 2 files changed, 9 insertions(+)
 create mode 100644 common/wireguard/templates/webserver.conf

diff --git a/common/wireguard/templates/webserver.conf b/common/wireguard/templates/webserver.conf
new file mode 100644
index 00000000..e3b21d7c
--- /dev/null
+++ b/common/wireguard/templates/webserver.conf
@@ -0,0 +1,8 @@
+[Interface]
+PrivateKey = {{ privatekey }}
+Address = 10.43.1.1 
+ListenPort = 51821
+
+[Peer]
+PublicKey = 9FLaGBXWjInPv4PFRuAJPPrPWruzocVrXg9lsmwGdX4=
+AllowedIPs = 10.43.1.2, 192.168.0.0/24, 10.0.0.0/23
diff --git a/site.yml b/site.yml
index 7bdc0b3d..afe0ed36 100644
--- a/site.yml
+++ b/site.yml
@@ -154,6 +154,7 @@
     - { role: common/kvm-guest, tags: kvm-guest }
     - { role: common/openvpn, tags: openvpn }
     - { role: common/prometheus-node, tags: prometheus-node }
+    - { role: common/wireguard, tags: wireguard }
     - { 
         role: common/docker_dockerstats, tags: dockerstats, 
         servicename: dockerstats, 
-- 
GitLab