ansible/host_vars/hindley/main.yml

---
ansible_host: "hindley.adh.auro.re"

## Users
users:
  histausse: sudo
  g33kex: sudo
  thomyrock: sudo
  dorian: sudo

## Networking
interfaces:
  enp2s0:
    ipv4: 45.66.110.3
    type: dhcp
  wg0:
    ipv4: "{{ intranet.subnets.physical.subnets.hindley.ipv4 }}"
    netmaskv4: "{{ intranet.netmaskv4 }}"
    type: wireguard

ipv4_forwarding: true
ipv6_forwarding: false

lan_address: "{{ intranet.subnets.physical.subnets.hindley.ipv4 }}"

## VPN
vpn_interfaces:
  wg0:
    ip: "{{ interfaces.wg0.ipv4 }}"
    private_key: "{{ vpn_key }}"
    public_key: "Ce48/ZdvpI2S82bIivhiWHQsyidzTAtxCnEYojY3xEA="
    keepalive: false
    peers:
    - public_key: "jvjOCj5xVTLwyQ8o7QsYvF2ep1HbD/GKnmjpqJuztB8="
      allowed_ips:
        - "{{ intranet.subnets.physical.subnets.router_hellman.ipv4 }}/{{ intranet.subnets.physical.subnets.router_hellman.netmaskv4  }}"
        - "{{ intranet.subnets.guest_hellman.ipv4 }}/{{ intranet.subnets.guest_hellman.netmaskv4 }}"
      comment: "Router hosted on Hellman"
    - public_key: "{{ vpn_guest_keys.knuth }}"
      allowed_ips: 
        - "{{ intranet.subnets.guest.subnets.knuth.ipv4 }}/{{ intranet.subnets.guest.subnets.knuth.netmaskv4 }}"
      comment: "Client laptop: knuth"
    - public_key: "{{ hostvars['sulfur'].vpn_interfaces.wg0.public_key }}"
      allowed_ips: 
        - "{{ hostvars['sulfur'].vpn_interfaces.wg0.ip }}/32"
      comment: "matrix VM, hosted on g33kex's server"
    - public_key: "{{ hostvars['technetium'].vpn_interfaces.wg0.public_key }}"
      allowed_ips:
        - "{{ hostvars['technetium'].vpn_interfaces.wg0.ip }}/32"
      comment: "test VM"

# apt proxy
proxy_apt_interfaces:
  - "{{ interfaces['wg0'].ipv4 }}"
add networking variable 2021-04-22 21:44:40 +02:00			`---`
migrate vpn role variables 2022-07-21 18:27:55 +02:00			`ansible_host: "hindley.adh.auro.re"`

			`## Users`
			`users:`
migrated apt proxy variables 2022-07-21 21:02:19 +02:00			`histausse: sudo`
			`g33kex: sudo`
			`thomyrock: sudo`
			`dorian: sudo`
migrate vpn role variables 2022-07-21 18:27:55 +02:00
			`## Networking`
			`interfaces:`
			`enp2s0:`
			`ipv4: 45.66.110.3`
			`type: dhcp`
			`wg0:`
			`ipv4: "{{ intranet.subnets.physical.subnets.hindley.ipv4 }}"`
			`netmaskv4: "{{ intranet.netmaskv4 }}"`
			`type: wireguard`

			`ipv4_forwarding: true`
			`ipv6_forwarding: false`

			`lan_address: "{{ intranet.subnets.physical.subnets.hindley.ipv4 }}"`

			`## VPN`
add networking variable 2021-04-22 21:44:40 +02:00			`vpn_interfaces:`
			`wg0:`
fallback to wg-quick because of the clusterfuck of configuration types between the OSs 2021-07-08 00:33:13 +02:00			`ip: "{{ interfaces.wg0.ipv4 }}"`
migrate vpn role variables 2022-07-21 18:27:55 +02:00			`private_key: "{{ vpn_key }}"`
add keys 2021-04-22 22:12:57 +02:00			`public_key: "Ce48/ZdvpI2S82bIivhiWHQsyidzTAtxCnEYojY3xEA="`
add networking variable 2021-04-22 21:44:40 +02:00			`keepalive: false`
			`peers:`
added toggle to no_log 2022-07-21 18:51:45 +02:00			`- public_key: "jvjOCj5xVTLwyQ8o7QsYvF2ep1HbD/GKnmjpqJuztB8="`
tweak the vpn template to route multiples subnets 2021-07-12 02:09:39 +02:00			`allowed_ips:`
update vpn config 2022-05-22 20:26:16 +02:00			`- "{{ intranet.subnets.physical.subnets.router_hellman.ipv4 }}/{{ intranet.subnets.physical.subnets.router_hellman.netmaskv4 }}"`
tweak the vpn template to route multiples subnets 2021-07-12 02:09:39 +02:00			`- "{{ intranet.subnets.guest_hellman.ipv4 }}/{{ intranet.subnets.guest_hellman.netmaskv4 }}"`
update vpn config 2022-05-22 20:26:16 +02:00			`comment: "Router hosted on Hellman"`
added toggle to no_log 2022-07-21 18:51:45 +02:00			`- public_key: "{{ vpn_guest_keys.knuth }}"`
tweak the vpn template to route multiples subnets 2021-07-12 02:09:39 +02:00			`allowed_ips:`
			`- "{{ intranet.subnets.guest.subnets.knuth.ipv4 }}/{{ intranet.subnets.guest.subnets.knuth.netmaskv4 }}"`
small changes to vpn 2021-04-23 09:16:33 +02:00			`comment: "Client laptop: knuth"`
added toggle to no_log 2022-07-21 18:51:45 +02:00			`- public_key: "{{ hostvars['sulfur'].vpn_interfaces.wg0.public_key }}"`
add settings for the new matrix vm 2021-08-07 01:06:30 +02:00			`allowed_ips:`
added toggle to no_log 2022-07-21 18:51:45 +02:00			`- "{{ hostvars['sulfur'].vpn_interfaces.wg0.ip }}/32"`
add settings for the new matrix vm 2021-08-07 01:06:30 +02:00			`comment: "matrix VM, hosted on g33kex's server"`
fixed vpn config 2022-07-21 19:05:12 +02:00			`- public_key: "{{ hostvars['technetium'].vpn_interfaces.wg0.public_key }}"`
added toggle to no_log 2022-07-21 18:51:45 +02:00			`allowed_ips:`
			`- "{{ hostvars['technetium'].vpn_interfaces.wg0.ip }}/32"`
			`comment: "test VM"`
add settings for the new matrix vm 2021-08-07 01:06:30 +02:00
migrate vpn role variables 2022-07-21 18:27:55 +02:00			`# apt proxy`
			`proxy_apt_interfaces:`
			`- "{{ interfaces['wg0'].ipv4 }}"`