---
vpn_interfaces:
  wg0:
    ip: "{{ interfaces.wg0.ipv4 }}"
    private_key: "{{ vpn_vault_hindley_key }}"
    public_key: "Ce48/ZdvpI2S82bIivhiWHQsyidzTAtxCnEYojY3xEA="
    keepalive: false
    peers:
    - endpoint: ""
      public_key: "jvjOCj5xVTLwyQ8o7QsYvF2ep1HbD/GKnmjpqJuztB8="
      allowed_ips:
        - "{{ intranet.subnets.physical.subnets.router_hellman.ipv4 }}/{{ intranet.subnets.physical.subnets.router_hellman.netmaskv4  }}"
        - "{{ intranet.subnets.guest_hellman.ipv4 }}/{{ intranet.subnets.guest_hellman.netmaskv4 }}"
      comment: "Router hosted on Hellman"
    - endpoint: ""
      public_key: "{{ vpn_guest_keys.knuth }}"
      allowed_ips: 
        - "{{ intranet.subnets.guest.subnets.knuth.ipv4 }}/{{ intranet.subnets.guest.subnets.knuth.netmaskv4 }}"
      comment: "Client laptop: knuth"
    - endpoint: ""
      public_key: "{{ hostvars['matrix_server'].vpn_interfaces.wg0.public_key }}"
      allowed_ips: 
        - "{{ hostvars['matrix_server'].vpn_interfaces.wg0.ip }}/32"
      comment: "matrix VM, hosted on g33kex's server"