We use cookies to ensure you get the best experience on our website
Home Explore Help
Sign In
aeth
/
ansibloated
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

populating server config with client values

aeth 9 months ago
parent
68139f6375
commit
54e749f3a2
2 changed files with 7 additions and 1 deletions
Split View Show Diff Stats
  1. 3 1
      tasks/tasks_variable_validation/vpn/task_variable_validation.yml
  2. 4 0
      templates/wg0.conf.j2

+ 3 - 1
tasks/tasks_variable_validation/vpn/task_variable_validation.yml
View File 

@@ -4,4 +4,6 @@
 
     that:
 
       - machine_subtype is string
 
       - vpn_network_address is string
 
-      - vpn_server_port >= 1 and vpn_server_port <= 65535
 
+      - vpn_server_port >= 1 and vpn_server_port <= 65535
 
+      - client_public_key is string
 
+      - client_vpn_address is string

+ 4 - 0
templates/wg0.conf.j2
View File 

@@ -12,3 +12,7 @@ PreDown = iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
 
 PostUp     = firewall-cmd --zone=public --add-port {{ vpn_server_port }}/udp && firewall-cmd --zone=public --add-masquerade
 
 PostDown   = firewall-cmd --zone=public --remove-port {{ vpn_server_port }}/udp && firewall-cmd --zone=public --remove-masquerade
 
 
+[Peer]
 
+PublicKey = {{ client_public_key }}
 
+AllowedIPs = {{ client_vpn_address }}
 
+