37 lines
860 B
YAML
37 lines
860 B
YAML
|
---
|
||
|
ansible_host: sulfur.lan
|
||
|
|
||
|
## Users
|
||
|
users:
|
||
|
g33kex: sudo
|
||
|
histausse: sudo
|
||
|
|
||
|
## Networking
|
||
|
interfaces:
|
||
|
ens18:
|
||
|
type: dhcp
|
||
|
wg0:
|
||
|
ipv4: "{{ intranet.subnets.physical.subnets.matrix.ipv4 }}"
|
||
|
netmaskv4: "{{ intranet.netmaskv4 }}"
|
||
|
type: wireguard
|
||
|
|
||
|
ipv4_forwarding: false
|
||
|
ipv6_forwarding: false
|
||
|
|
||
|
lan_address: "{{ intranet.subnets.physical.subnets.matrix.ipv4 }}"
|
||
|
|
||
|
## VPN
|
||
|
vpn_interfaces:
|
||
|
wg0:
|
||
|
ip: "{{ interfaces.wg0.ipv4 }}"
|
||
|
private_key: "{{ vpn_key }}"
|
||
|
public_key: "oQH8CBofxNSOGevaz1HZlz3ZW+H3ndb/TmqM0pCiRR8="
|
||
|
keepalive: true
|
||
|
peers:
|
||
|
- endpoint: "{{ hostvars['hindley'].interfaces.enp2s0.ipv4 }}"
|
||
|
public_key: "{{ hostvars['hindley'].vpn_interfaces.wg0.public_key }}"
|
||
|
allowed_ips:
|
||
|
- "{{ hostvars['hindley'].vpn_interfaces.wg0.ip }}/{{ interfaces.wg0.netmaskv4 }}"
|
||
|
comment: "hindley"
|
||
|
|