Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dynamist/ansible-role-wireguard-vyatta

Ansible role for managing wireguard on vyatta based routers
https://github.com/dynamist/ansible-role-wireguard-vyatta

automation edgeos vyatta wireguard

Last synced: 25 days ago
JSON representation

Ansible role for managing wireguard on vyatta based routers

Host: GitHub
URL: https://github.com/dynamist/ansible-role-wireguard-vyatta
Owner: dynamist
License: apache-2.0
Created: 2019-10-26T20:05:37.000Z (about 5 years ago)
Default Branch: master
Last Pushed: 2021-06-17T13:23:57.000Z (over 3 years ago)
Last Synced: 2023-03-03T05:36:26.697Z (almost 2 years ago)
Topics: automation, edgeos, vyatta, wireguard
Homepage:
Size: 18.6 KB
Stars: 19
Watchers: 4
Forks: 2
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

ansible-role-wireguard-vyatta
=========

A simple role to install Wireguard DEB package on Vyatta based routers and to configure peers

Currently only supports EdgeOS

To do both do installation and configuration, the playbook must be defined with two entries:

- First is to install the executable using regular SSH (`wireguard_install`)
- Second is to configure Vyatta using networking module (`wireguard_configure`)

Requirements
------------

Vyatta based units (Vyatta, EdgeOS, VyOS)

Role Variables
--------------

`wireguard_url` (default: `https://api.github.com/repos/WireGuard/wireguard-vyatta-ubnt/releases`)

`wireguard_release` (default: `1.0.20210424-1`)

`wireguard_config_dir` (default: `/config/wireguard`)

`wireguard_wg_interfaces` (default: `[]`)

Dependencies
------------
requirements.yaml:

```yaml---
collections:
- community.network
```

Install using:

- `ansible-galaxy collection install -r requirements.yaml`

Example Playbook
----------------

Playbook to run against EdgeOS routers.

```yaml
---
- name: EdgeOS wireguard install
hosts: routers
gather_facts: false
vars:
wireguard_install: true
wireguard_configure: false
roles:
- ansible-role-wireguard-vyatta

- name: EdgeOS wireguard configure
hosts: routers
gather_facts: false
connection: network_cli
vars:
ansible_network_os: edgeos
wireguard_install: false
wireguard_configure: "server" # change to "client" for client
wireguard_wg_interfaces:
- interface: wg0
description: "VPN Clients"
address: 192.168.58.1/24
# privkey: assign private key with a variable instead of a file for client
port: 51820 # client doesn't use port
peer:
- id: "AAAAAAAAAABBBBBBBBBBCCCCCCCCCCCCDDDDDDDDDDD="
description: "peer 1"
allowed_ips: 192.168.53.101/32
# endpoint: : # client needs an endpoint as well
roles:
- ansible-role-wireguard-vyatta
```

License
-------

Apache 2.0

Author Information
------------------

Author: Richard Holmboe

Website: https://dynamist.se/en/