Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/9at8/wireguard-vpn-playbook
https://github.com/9at8/wireguard-vpn-playbook
Last synced: 2 days ago
JSON representation
- Host: GitHub
- URL: https://github.com/9at8/wireguard-vpn-playbook
- Owner: 9at8
- Created: 2022-09-12T02:05:26.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2023-12-15T20:12:15.000Z (10 months ago)
- Last Synced: 2024-04-18T07:02:30.433Z (6 months ago)
- Language: Jinja
- Size: 6.84 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Ansible playbook to setup a wireguard VPN
- Create a VM somewhere and add it to the [inventory](inventory.yml) and make sure you have ssh access to it.
- Make sure the [wireguard port](inventory.yml#L23) is open on the VM.
- Edit the `ansible_host` variable as that is used to setup the vpn.
- Add or remove peers (vpn clients) using the [wireguard_peers](inventory.yml#L29) as necessary.
- Run the playbook: `ansible-playbook -i inventory.yml playbook.yml`.
- Once the playbook is done, all client configs should be present in the [config](inventory.yml#L38) directory.
- Download the wireguard app on your device and profit.
## Known Issues
- Sometimes I need to run `sudo ip addr flush dev eth0` if I get `RTNETLINK answers: File exists` error.
- https://raspberrypi.stackexchange.com/questions/13895/solving-rtnetlink-answers-file-exists-when-running-ifup
- Hex math for ipv6 in `helpers.j2` is incorrect.
- If you want to add exclusions to traffic, replace the `AllowedIPs` part of `client.conf.j2`. You can use the following tool to calculate it:
- https://www.procustodibus.com/blog/2021/03/wireguard-allowedips-calculator/