1
0
Fork 0
Commit graph

44 commits

Author SHA1 Message Date
KemoNine 1faf8d9f12 Attempt to tweak config generator to include ALL hosts that could have been included in the play, rather than just the ones matching filters (helpful for controller deployments) 2020-08-04 17:39:33 +00:00
KemoNine 8fc7870c76 Tweak wireguard role to ensure the bare-metal tasks can be skipped 2020-08-04 06:37:03 +00:00
Robert Wimmer d5b81cb75e
update CHANGELOG (#57)
Co-authored-by: githubixx <home@tauceti.net>
2020-06-14 17:56:46 +02:00
pallinger 1997b9d710
Fix on debian openstack images (#55)
* on openstack Debian images, the kernel is different, so we need to install different kernel headers, too

* fix syntax error in conditional fact

* remove debug message

Co-authored-by: Peter Pallinger <pallinger@sztaki.hu>
2020-06-14 17:52:17 +02:00
Robert Wimmer 359d601008
update CHANGELOG for version 6.3.0 (#56)
Co-authored-by: githubixx <home@tauceti.net>
2020-06-04 23:22:47 +02:00
Stefan Haun 2ef11ac648
Add a role for Raspbian (#54)
* Rename debian-setup role to point to vanilla Debian

* Add a specific setup role for Raspbian

This role will fail for now, Raspbian is not supported by this role as it is.

* Add a switch for Raspbian

* Add Raspbian role for installing WireGuard

* Raspbian: Handle reboot with molly-guard and older Ansible versions
2020-06-04 23:17:25 +02:00
Robert Wimmer 9f76b8baf5
Support Ubuntu 20.04 (#52)
* update Ansible Galaxy meta info (added Ubunut Focal Fossa / Debian Buster)

* update CHANGELOG (Ubuntu 20.04 support)

* move OS package installation to OS specific subtasks

* update README

* update CHANGELOG

Co-authored-by: githubixx <home@tauceti.net>
2020-05-04 23:27:56 +02:00
Robert Wimmer 97f566ad85
cleanup (#51)
* update CHANGELOG

* fix typo

* update CHANGELOG

Co-authored-by: githubixx <home@tauceti.net>
2020-05-02 21:32:09 +02:00
Jürgen Hötzel 04843b5394
Use Arch Linux specific package list (#48)
Arch Linux ships a Linux kernel > 5.6 and doesn't require DKMS.

Move the package list variable to (distribution-specific) var files.

For the Arch Linux LTS kernel (5.4) a binary wireguard-lts package is
provided in [core].
2020-05-02 21:12:34 +02:00
Ties de Kock 13621d4d68
Use wireguard from buster-backports on debian if needed (#49)
* Changes wireguard apt repo to buster-backports

* Add repo only on buster or earlier

* No apt pin needed, backports has lower priority than main distribution

* Update CHANGELOG.md

Co-Authored-By: Robert Wimmer <2039811+githubixx@users.noreply.github.com>

* Clarify effects of updating on system state

Co-authored-by: Robert Wimmer <2039811+githubixx@users.noreply.github.com>
2020-04-28 21:01:46 +02:00
Robert Wimmer 9be9694553
update README (version 6.0.3) (#47)
Co-authored-by: githubixx <home@tauceti.net>
2020-04-03 21:03:23 +02:00
Cristian Chiru 6348c48193
Forcing stop and start to clear routes (#46) 2020-04-03 20:59:32 +02:00
Robert Wimmer 43ad9a1cfe
add changes for version 6.0.2 (#44)
Co-authored-by: githubixx <home@tauceti.net>
2020-03-18 20:18:02 +01:00
James Kiefer a7ada33e73
Bugfix: Install gnupg instead of gpg for debian (#43) 2020-03-18 20:12:19 +01:00
Robert Wimmer 3322faf576
Shell best practice (#40)
* add shell options to syncconf handler to fail fast in case of error

* update CHANGELOG
2020-02-04 22:17:00 +01:00
Robert Wimmer 8e7ed9e702
Use "wg syncconf" if available (#38)
* use wg syncconf if available

* use boolean as variable type for wg_syncconf

* update CHANGELOG

* update README
2020-01-26 23:30:16 +01:00
Robert Wimmer f97210d2ad
Update readme (#37)
* update README/CHANGELOG

* update CHANGELOG
2020-01-20 21:28:58 +01:00
Madic- 63dfa963be Ability to create multiple postup/postdown/preup/predown commands (#35)
* Allow multiple PreUp, PreDown, PostUp and PostDown commands

* Added example for multiple postup/postdown commands
2020-01-20 21:07:08 +01:00
Ties de Kock 7826119ea7 Add basic fedora support (#32)
* Add basic fedora support

* Add Fedora to metadata, update Changelog
2020-01-05 20:07:11 +01:00
githubixx e59c8bd027 update CHANGELOG 2019-11-11 19:57:52 +01:00
Ties de Kock 3af06352ae Install GPG to be able to import WireGuard key (#31) 2019-11-11 19:56:10 +01:00
githubixx d281a98d5b update CHANGELOG 2019-11-05 22:56:24 +01:00
Robert Wimmer 7fcc0b22a0
Add interface options (#30)
* add missing options for WG interface definition

* fix typo

* add host comments to WG config file

* remove IP forwarding again

* fix README
2019-11-05 22:55:04 +01:00
fbourqui a357e5fab1 Merge stateless idea with no local storage of public and private keys, support multiple interface per hosts using several groups (#29)
* merge stateless with no storage of local priv key

* Delete locally stored private key

* add reload module on update config file

* privatekey template is not used anymore

* remove all local keys priv and public

* use ansible_play_hosts instead of hardcoded vpn grp
should use the group in the play calling the role.
works fine when hosts bellong to several groups

* Clean tasks names

* add tag, and cleanup

* fix private key creation

* Support for mutliple wireguard vpn on same host
add inventory exemple in readme

* fix typo, add some comment on inventory

* add  wg-config tag to Check config:
allow  run  with -t - wg-config

* Update tasks/main.yml

Co-Authored-By: Robert Wimmer <2039811+githubixx@users.noreply.github.com>

* remove trailing whitespace

* Update templates/wg.conf.j2

Co-Authored-By: Robert Wimmer <2039811+githubixx@users.noreply.github.com>

* Update templates/wg.conf.j2

Co-Authored-By: Robert Wimmer <2039811+githubixx@users.noreply.github.com>

* changes after githubixx code review

* readd new line to separate peers in config
2019-11-02 20:39:47 +01:00
Robert Wimmer 9a0e70ee25
remove unneeded with_inventory_hostnames loops (#27)
* remove unneeded with_inventory_hostnames loops

* update CHANGELOG
2019-09-26 22:36:36 +02:00
Robert Wimmer fa595d8f35
update CHANGELOG (#21) 2019-09-18 20:48:18 +02:00
Pierre Ozoux 493d407637 Cleans unecessary files. (#19) 2019-09-18 20:45:52 +02:00
Robert Wimmer 5a1488a2cd
add metadata for CentOS/EL (#12) 2019-06-06 19:49:19 +02:00
Alex Hanselka 21706b822a add CentOS support (#9) 2019-06-06 19:37:02 +02:00
Robert Wimmer 663dfcb2f2
update CHANGELOG for version 3.1.0 (#11) 2019-06-04 21:55:28 +02:00
Alex Hanselka 59eac1706c update tasks to use the new preferred looping syntax (#10) 2019-06-04 21:51:25 +02:00
githubixx 897053ae02 fix address in README 2019-04-29 21:25:02 +02:00
fbourqui 5cfcd0b18a Fix typo subnet not consistent. 10.3.0 vs 10.8.0 (#8) 2019-04-29 21:20:50 +02:00
Robert Wimmer 8cacff8776
update README / CHANGELOG / Ansible meta (#7) 2019-02-06 21:07:42 +01:00
Ties de Kock 3a8d3260c4 feat(debian) enable module to work on debian (#6)
* feat(debian) enable module to work on debian

Add support for Debian based on the documentation in debian wiki
and discussion in [0].

[0]: https://github.com/githubixx/ansible-role-wireguard/issues/5

* remove run_once for debian

* Install kernel headers on debian

There is no equivalent package of linux-headers-generic on debian.
Package installation needs to specify the architecture (i.e. amd64),
which is captured from dpkg output.

* Only use include_tasks to differentiate distributions

Before Archlinux was split out using ansible_os_family. But since
ansible_os_family overlaps for Debian and Ubuntu, two when
statements were used to split out these cases:

  - All arch derivations
  - Debian
  - Ubuntu

New style is cleaner. Arch derivations can still be used by
overiding ansible_distribution in inventory.

* incorporate feedback: move pin file, other changed_when syntax
2019-02-06 20:56:06 +01:00
githubixx 2ef8f8cae4 update CHANGELOG / version 2.0.1 2019-01-07 22:57:01 +01:00
githubixx c9dc3cfff5 make Ansible linter happy 2019-01-07 22:56:20 +01:00
githubixx a1794a99f6 update README 2019-01-07 22:51:32 +01:00
githubixx 7605a76a03 make Ansible linter happy / changelog to separate file / new versioning scheme 2019-01-07 22:49:06 +01:00
githubixx 0b08c95a2a fix filename 2018-10-03 23:14:30 +02:00
githubixx c1c3c26aab update README 2018-09-27 23:27:32 +02:00
Robert Wimmer 2d46a74b4e
Fixes (#2)
* update README

* update README
2018-09-12 23:32:15 +02:00
Robert Wimmer d197bd980d
Inital implementation (#1)
* initial implementation - part 1

* first working version

* add handler

* separate includes for Debian based and Archlinux OS

* refactor

* update

* add meta tag

* added ArchLinux to galaxy meta info

* rename file / add more Wiregurad config options

* fix typo

* update README

* update README

* fixed typos

* update README / variable rename: wireguard_ip -> wireguard_address
2018-08-12 22:21:45 +02:00
Robert Wimmer 49c39916fd
Initial commit 2018-07-15 19:16:02 +02:00