jowj
/
adc
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'e41ae06700'
${ noResults }
adc/ansible
History
josiah e41ae06700
add clarity to readme regarding adding a client for vpn. 		4 years ago
..
group_vars/all Prep for lil' lady additions to fleet. 4 years ago
host_vars/larva.home.jowj.net Final tweaks for working deploy. 4 years ago
roles Add stanza for freshrss. 4 years ago
all.yml Final tweaks for working deploy. 4 years ago
ansible.cfg Move to python3 for ansible interpretter; init docker swarm. 4 years ago
awfulAll.yml Add new awfulAll config to all.yml; create standalone play. 4 years ago
clients.yml Move to single file for client deploys. 4 years ago
cloud_wg.yml Add new play for configuring cloud vpn server. 4 years ago
hosts.yml Prep for lil' lady additions to fleet. 4 years ago
open_the_vault.sh Easily handle ansible vault stuff! 4 years ago
readme.org add clarity to readme regarding adding a client for vpn. 4 years ago
vault_passphrase.gpg Prep for lil' lady additions to fleet. 4 years ago

readme.org

setup from scratch:

ansible-playbook -i hosts.yml all.yml --ask-vault-pass --ask-become-pass

preparing open_the_vault

wg

clients

you probably want to deploy clients individually most of the time. to do that, provide a tag, like: ansible-playbook -i hosts.yml client_matrix.yml --ask-vault-pass --ask-become-pass --tags matrix_client

adding a client

  • generate a new public/private keypair
  • umask 077
  • wg genkey | tee privatekey | wg pubkey > publickey
  • add the pubkey to the groupvars/main.yml
  • add the privkey to the groupvars/vault.yml
  • add a task referencing the new client
  • add a template with the groupvars embedded.