ansible-role-wireguard/templates/wg-fullmesh.conf.j2

#jinja2: lstrip_blocks:"True",trim_blocks:"True"
[Interface]
Address = {{hostvars[inventory_hostname].wireguard_ip}}
PrivateKey = {{private_key}}
ListenPort = {{wireguard_port}}

{% for host in groups["vpn"] %}
  {% if host != inventory_hostname %}
    [Peer]
    PublicKey = {{hostvars[host].public_key}}
    AllowedIPs = {{hostvars[host].wireguard_ip}}/32
    {% if hostvars[host].wireguard_endpoint is not defined %}
    Endpoint = {{host}}:{{wireguard_port}}
    {% elif hostvars[host].wireguard_endpoint != "" %}
    Endpoint = {{hostvars[host].wireguard_endpoint}}:{{wireguard_port}}
    {% endif %}

  {% endif %}
{% endfor %}
refactor 2018-07-23 21:50:53 +00:00			`#jinja2: lstrip_blocks:"True",trim_blocks:"True"`
first working version 2018-07-18 21:57:27 +00:00			`[Interface]`
refactor 2018-07-23 21:50:53 +00:00			`Address = {{hostvars[inventory_hostname].wireguard_ip}}`
first working version 2018-07-18 21:57:27 +00:00			`PrivateKey = {{private_key}}`
			`ListenPort = {{wireguard_port}}`

			`{% for host in groups["vpn"] %}`
refactor 2018-07-23 21:50:53 +00:00			`{% if host != inventory_hostname %}`
first working version 2018-07-18 21:57:27 +00:00			`[Peer]`
refactor 2018-07-23 21:50:53 +00:00			`PublicKey = {{hostvars[host].public_key}}`
			`AllowedIPs = {{hostvars[host].wireguard_ip}}/32`
			`{% if hostvars[host].wireguard_endpoint is not defined %}`
first working version 2018-07-18 21:57:27 +00:00			`Endpoint = {{host}}:{{wireguard_port}}`
refactor 2018-07-23 21:50:53 +00:00			`{% elif hostvars[host].wireguard_endpoint != "" %}`
			`Endpoint = {{hostvars[host].wireguard_endpoint}}:{{wireguard_port}}`
			`{% endif %}`

			`{% endif %}`
first working version 2018-07-18 21:57:27 +00:00			`{% endfor %}`