blob: c1fd887e9404189a2f6d10bb5e5879d317af410a (
plain) (
tree)
|
|
# wireguard client configuration ~~ /etc/wireguard/*.conf
# managed by Ansible
{% set dcontroller_keys = lookup("file", wg_dcontroller_keys).splitlines() %}
[Interface]
#Address = {{ ip.in }}, fd00::1/128
ListenPort = 53
PrivateKey = {{ dcontroller_keys[0] }}
{% for host in groups["all"] if hostvars[host].ansible_host != _i.dcontroller %}
{% set host = hostvars[host] %}
{% set host_keys = lookup("file", wg_dir + "/" + host.ansible_host + ".keys").splitlines() %}
# {{ host.ansible_host }}
[Peer]
PublicKey = {{ host_keys[1] }}
AllowedIPs = {{ host.ip.in }}/32, fd00:10:10::{{ host.ip.in.split('.')[3] }}/128
{% endfor %}
|
