Add airvpn tunnel for accessing heimdall

This commit is contained in:
Wojciech Kozlowski 2023-07-22 12:33:52 +02:00
parent f5f972b6db
commit 0909f69f87
5 changed files with 44 additions and 4 deletions

View File

@ -12,7 +12,7 @@ system_var_containers_directory: "{{ system_var_root_directory }}/containers"
# --------------------------------------------------------------------------------------------------
vpn_wireguard_port: 51820
vpn_wireguard_address: "10.66.0.{{ vpn_subnet_id }}"
vpn_wireguard_netmask: "255.255.255.252"
vpn_wireguard_prefixlen: 30
vpn_wireguard_subnet: "10.66.0.0/30"
# --------------------------------------------------------------------------------------------------

View File

@ -2,6 +2,6 @@
# --------------------------------------------------------------------------------------------------
# vpn:wireguard
# --------------------------------------------------------------------------------------------------
vpn_wireguard_port: 12768
vpn_wireguard_netmask: "255.255.255.252"
vpn_wireguard_port: 53768
vpn_wireguard_prefixlen: 30
vpn_wireguard_subnet: "10.68.0.0/30"

View File

@ -16,6 +16,26 @@ system_base_udp_ports:
vpn_wireguard_role: "server"
vpn_wireguard_address: "10.68.0.1"
vpn_wireguard_interface_private_key: "{{ vault_vpn_wireguard_interface_private_key }}"
vpn_wireguard_routing_table: "{{ vpn_airvpn_routing_table }}"
vpn_wireguard_clients:
- public_key: "{{ vault_vpn_wireguard_clients_0_public_key }}"
preshared_key: "{{ vault_vpn_wireguard_clients_0_preshared_key }}"
# The AirVPN MTU is 1320 so the combined MTU is 1320 - 80 = 1240.
vpn_wireguard_mtu: 1240
# --------------------------------------------------------------------------------------------------
# vpn:airvpn
# --------------------------------------------------------------------------------------------------
vpn_airvpn_role: "client"
vpn_airvpn_port: 1637
vpn_airvpn_address: "{{ vault_vpn_airvpn_address }}"
vpn_airvpn_prefixlen: "{{ vault_vpn_airvpn_prefixlen }}"
vpn_airvpn_address_v6: "{{ vault_vpn_airvpn_address_v6 }}"
vpn_airvpn_prefixlen_v6: "{{ vault_vpn_airvpn_prefixlen_v6 }}"
vpn_airvpn_mtu: 1320
vpn_airvpn_interface_private_key: "{{ vault_vpn_airvpn_interface_private_key }}"
vpn_airvpn_server_public_key: "{{ vault_vpn_airvpn_server_public_key }}"
vpn_airvpn_server_preshared_key: "{{ vault_vpn_airvpn_server_preshared_key }}"
vpn_airvpn_server_address: "{{ vault_vpn_airvpn_server_address }}"
vpn_airvpn_routing_table: 768

View File

@ -12,3 +12,23 @@
roles:
- role: "vpn/bridge"
tags: "vpn:bridge"
- name: "vpn : heimdall"
hosts: "heimdall"
roles:
- role: "vpn/wireguard"
tags: "vpn:airvpn"
vars:
vpn_wireguard_iface: "wg-airvpn"
vpn_wireguard_role: "{{ vpn_airvpn_role }}"
vpn_wireguard_port: "{{ vpn_airvpn_port }}"
vpn_wireguard_address: "{{ vpn_airvpn_address }}"
vpn_wireguard_prefixlen: "{{ vpn_airvpn_prefixlen }}"
vpn_wireguard_address_v6: "{{ vpn_airvpn_address_v6 }}"
vpn_wireguard_prefixlen_v6: "{{ vpn_airvpn_prefixlen_v6 }}"
vpn_wireguard_mtu: "{{ vpn_airvpn_mtu }}"
vpn_wireguard_interface_private_key: "{{ vpn_airvpn_interface_private_key }}"
vpn_wireguard_server_public_key: "{{ vpn_airvpn_server_public_key }}"
vpn_wireguard_server_preshared_key: "{{ vpn_airvpn_server_preshared_key }}"
vpn_wireguard_server_address: "{{ vpn_airvpn_server_address }}"
vpn_wireguard_routing_table: "{{ vpn_airvpn_routing_table }}"

2
roles

@ -1 +1 @@
Subproject commit 444308d6a5e3cefe1804cddeafae387899a81eae
Subproject commit b6bdbe5d0104059d2bf8308afd0d00875a516322