From edfeb6401af135348ddd38518a27be3e8ec51f6a Mon Sep 17 00:00:00 2001
From: binary <me@rgoncalves.se>
Date: Wed, 17 Mar 2021 20:53:31 +0100
Subject: Make wireguard unreachables/failures free

---
 roles/wireguard/templates/dcontroller.conf.j2 | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'roles/wireguard/templates/dcontroller.conf.j2')

diff --git a/roles/wireguard/templates/dcontroller.conf.j2 b/roles/wireguard/templates/dcontroller.conf.j2
index 7213925..a8e6292 100644
--- a/roles/wireguard/templates/dcontroller.conf.j2
+++ b/roles/wireguard/templates/dcontroller.conf.j2
@@ -8,12 +8,15 @@
 ListenPort = 53
 PrivateKey = {{ dcontroller_keys[0] }}
 
-{% for host in groups["all"] if hostvars[host].ansible_host != global.dcontroller %}
+{% for host in groups["all"] %}
 {% set host = hostvars[host] %}
+{##}
+{% if host.ansible_host != global.dcontroller and host.ip is defined %}
 {% set host_keys = lookup("file", wg_dir + "/" + host.ansible_host + ".keys").splitlines() %}
 # {{ host.ansible_host }}
 [Peer]
 PublicKey = {{ host_keys[1] }}
 AllowedIPs = {{ host.ip.in }}/32, fd00:10:10::{{ host.ip.in.split('.')[3] }}/128
 
+{% endif %}
 {% endfor %}
-- 
cgit v1.2.3