From 55298a51cb0cc5e68c5a43869f2f32b899d3a622 Mon Sep 17 00:00:00 2001
From: Aaditya Dhruv <aadityadhruv@mailbox.org>
Date: Tue, 22 Apr 2025 17:29:46 -0500
Subject: init

---
 roles/wireguard/templates/wireguard.master.j2 |  6 ++++++
 roles/wireguard/templates/wireguard.slave.j2  | 11 +++++++++++
 2 files changed, 17 insertions(+)
 create mode 100644 roles/wireguard/templates/wireguard.master.j2
 create mode 100644 roles/wireguard/templates/wireguard.slave.j2

(limited to 'roles/wireguard/templates')

diff --git a/roles/wireguard/templates/wireguard.master.j2 b/roles/wireguard/templates/wireguard.master.j2
new file mode 100644
index 0000000..c2ac41c
--- /dev/null
+++ b/roles/wireguard/templates/wireguard.master.j2
@@ -0,0 +1,6 @@
+[Interface]
+Address = 10.0.0.1/24
+PostUp = firewall-cmd --add-masquerade
+PostDown = firewall-cmd --remove-masquerade
+ListenPort = {{ network.wireguard.port }}
+PrivateKey = {{ privatekey }}
diff --git a/roles/wireguard/templates/wireguard.slave.j2 b/roles/wireguard/templates/wireguard.slave.j2
new file mode 100644
index 0000000..b6a01b8
--- /dev/null
+++ b/roles/wireguard/templates/wireguard.slave.j2
@@ -0,0 +1,11 @@
+[Interface]
+Address = {{ wireguard_ip }}/24
+ListenPort = {{ network.wireguard.port }}
+PrivateKey = {{ privatekey }}
+DNS = {{ network.dns }}
+
+[Peer]
+PublicKey = {{ hostvars[groups['cloud'][0]]['ansible_local']['wireguard']['PublicKey'] }}
+AllowedIPs = 0.0.0.0/0
+Endpoint = {{ hostvars[groups['cloud'][0]]['ansible_default_ipv4']['address'] }}:{{ network.wireguard.port }}
+PersistentKeepalive = 15
-- 
cgit