Clément Désiles
b0324cf3fe
- nfs_server: nfs_package_name (nfs-utils / nfs-kernel-server) - wireguard: wireguard_package_name (wireguard-tools / wireguard) - tooling: tooling_dig_package, tooling_netcat_package Also fix tooling role structure: move tooling.yml to tasks/main.yml so the role is actually invokable via 'role: tooling' (defaults/main.yml is auto-loaded), and collapse the 10 individual package tasks into a single list-based install.
22 lines
1.2 KiB
YAML
22 lines
1.2 KiB
YAML
---
|
|
wireguard_primary_interface: "{{ network_interfaces.0.name }}"
|
|
wireguard_config_base_path: /etc/wireguard
|
|
# wireguard_tunnels:
|
|
# - interface: wg0 # required: maps to wgN interface name and config filename
|
|
# address: 10.0.0.1/24 # required: CIDR address for [Interface] Address
|
|
# port: 51820 # optional: ListenPort (required in server_mode)
|
|
# dns: 10.0.0.1 # optional: DNS= line; omit to suppress
|
|
# server_mode: true # optional (default: false): enables NAT masquerade + UFW rule
|
|
# primary_interface: eth0 # optional: overrides wireguard_primary_interface for this tunnel
|
|
# peers: # optional: list of [Peer] entries
|
|
# - name: peer_name # required: comment label
|
|
# public_key: ... # required: peer's public key
|
|
# allowed_ips: [10.0.0.0/24] # required: list of CIDRs
|
|
# endpoint: host:port # optional: peer's public endpoint
|
|
# persistent_keepalive: 25 # optional: keepalive interval (seconds)
|
|
wireguard_tunnels: []
|
|
|
|
# OS-dependent package name
|
|
wireguard_package_name: >-
|
|
{{ (ansible_facts['os_family'] == 'Archlinux') | ternary('wireguard-tools', 'wireguard') }}
|