Add vpn:base role
This commit is contained in:
parent
2551993f86
commit
149e023534
1
main.yml
1
main.yml
@ -1,2 +1,3 @@
|
||||
---
|
||||
- ansible.builtin.import_playbook: "plays/system/main.yml"
|
||||
- ansible.builtin.import_playbook: "plays/vpn/main.yml"
|
||||
|
@ -3,6 +3,5 @@
|
||||
hosts: asgard
|
||||
|
||||
tasks:
|
||||
- import_tasks: tasks/vpn/ipforward.yml
|
||||
- import_tasks: tasks/vpn/bridge.yml
|
||||
- import_tasks: tasks/vpn/wireguard.yml
|
||||
|
@ -1,5 +0,0 @@
|
||||
- sysctl:
|
||||
name: net.ipv4.ip_forward
|
||||
value: '1'
|
||||
sysctl_file: /etc/sysctl.d/local.conf
|
||||
reload: yes
|
@ -1,7 +1,3 @@
|
||||
- name: Install WireGuard
|
||||
apt:
|
||||
name: wireguard
|
||||
|
||||
- name: WireGuard interface configuration
|
||||
template:
|
||||
src: ./filesystem/{{ ansible_hostname }}/etc/wireguard/wg0.conf.j2
|
||||
|
6
plays/vpn/main.yml
Normal file
6
plays/vpn/main.yml
Normal file
@ -0,0 +1,6 @@
|
||||
---
|
||||
- name: "vpn : group:all"
|
||||
hosts: "all"
|
||||
roles:
|
||||
- role: "base"
|
||||
tags: "vpn:base"
|
10
plays/vpn/roles/base/tasks/main.yml
Normal file
10
plays/vpn/roles/base/tasks/main.yml
Normal file
@ -0,0 +1,10 @@
|
||||
- name: "enable ipv4 forwarding"
|
||||
ansible.posix.sysctl:
|
||||
name: "net.ipv4.ip_forward"
|
||||
value: "1"
|
||||
sysctl_file: "/etc/sysctl.d/local.conf"
|
||||
reload: true
|
||||
|
||||
- name: "install wireguard"
|
||||
ansible.builtin.apt:
|
||||
name: "wireguard"
|
Loading…
Reference in New Issue
Block a user