60 lines
1.3 KiB
Plaintext
Executable File
60 lines
1.3 KiB
Plaintext
Executable File
# {{ ansible_managed }}
|
|
|
|
[Interface]
|
|
PrivateKey = {{ vpn_server_privkey }}
|
|
Address = 10.0.0.1/24
|
|
PostUp = iptables -A FORWARD -i wg0 -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
|
|
PostDown = iptables -D FORWARD -i wg0 -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
|
|
ListenPort = {{ proxy_server_vpn_port }}
|
|
|
|
# Mail Service
|
|
[Peer]
|
|
PublicKey = {{ mail_service_pubkey }}
|
|
AllowedIPs = 10.0.0.2/32
|
|
|
|
# Git Service
|
|
[Peer]
|
|
PublicKey = {{ git_service_pubkey }}
|
|
AllowedIPs = 10.0.0.3/32
|
|
|
|
# Invidious Service
|
|
[Peer]
|
|
PublicKey = {{ invidious_service_pubkey }}
|
|
AllowedIPs = 10.0.0.3/32
|
|
|
|
# Searxng Service
|
|
[Peer]
|
|
PublicKey = {{ searxng_service_pubkey }}
|
|
AllowedIPs = 10.0.0.4/32
|
|
|
|
# Nextcloud Service
|
|
[Peer]
|
|
PublicKey = {{ nextcloud_service_pubkey }}
|
|
AllowedIPs = 10.0.0.5/32
|
|
|
|
# Chat Service
|
|
[Peer]
|
|
PublicKey = {{ chat_service_pubkey }}
|
|
AllowedIPs = 10.0.0.6/32
|
|
|
|
# Minecraft Service
|
|
[Peer]
|
|
PublicKey = {{ minecraft_service_pubkey }}
|
|
AllowedIPs = 10.0.0.7/32
|
|
|
|
|
|
# Connection to backend server for icinga2
|
|
[Peer]
|
|
PublicKey = {{ icinga2_backend_pubkey }}
|
|
AllowedIPs = 10.0.0.198/32
|
|
|
|
# Connection to backend server for cockpit
|
|
[Peer]
|
|
PublicKey = {{ cockpit_backend_pubkey }}
|
|
AllowedIPs = 10.0.0.199/32
|
|
|
|
# User Key for Phone/Desktop/Laptop use
|
|
[Peer]
|
|
PublicKey = {{ user_pubkey }}
|
|
AllowedIPs = 10.0.0.200/32
|