aboutsummaryrefslogblamecommitdiff
path: root/ansible/roles/network/templates/wireguard.conf.j2
blob: 907d5460f6c6bf198f012584c5cebf990a1603c9 (plain) (tree)
1
2
3
4
5
6
7
8
9
10
11
12











                                                                                                
[Interface]
Address = {{ vpn_ip }}
PrivateKey = {{ wireguard_privkey.stdout }}
ListenPort = 51820

{% for selected_host in groups['cluster_nodes']|difference([inventory_hostname]) %}
[Peer]
PublicKey = {{ hostvars[selected_host].wireguard_pubkey.stdout }}
Endpoint = {{ hostvars[selected_host].public_ip }}:{{ hostvars[selected_host].public_vpn_port }}
AllowedIPs = {{ hostvars[selected_host].vpn_ip }}/32
PersistentKeepalive = 25
{% endfor %}