diff options
author | Niklas Yann Wettengel <niyawe@niyawe.de> | 2018-02-10 20:38:49 +0100 |
---|---|---|
committer | Niklas Yann Wettengel <niyawe@niyawe.de> | 2018-02-10 20:38:49 +0100 |
commit | ce3ca9e97c60660f2e491204cd0359abb4a05aa4 (patch) | |
tree | 8f2826ec483537b8024a54cc48d9ab783681158e | |
parent | d527f8e6d0fbae1d994b1496d49cde28d7e18d0f (diff) |
fastd sample config up
-rw-r--r-- | host_vars/fastd | 90 |
1 files changed, 12 insertions, 78 deletions
diff --git a/host_vars/fastd b/host_vars/fastd index 1b5d430..5f60540 100644 --- a/host_vars/fastd +++ b/host_vars/fastd @@ -4,6 +4,7 @@ sites: - name: '<site kürzel>' net4: '<ipv4 netz>' net6: '<ipv6 netz>' + site_net6: '<site netz>' fastd_secret: <fastd secret key> fastd_mesh_mac: '<mesh mac> fastd_port1: <erster port> @@ -14,84 +15,17 @@ sites: dhcp_netmask: '<netzmaske>' dhcp_start: <ipv4> dhcp_end: <ipv4> - wireguard_mesh_key: '< priv key >' + wireguard_mesh_number: 1 + wireguard_mesh_priv_key: '< priv key >' + wireguard_mesh_pub_key: '< pub key >' wireguard_mesh_port: < wg mesh port> wireguard_mesh_address: '< own wg mesh ipv6 ula>' - wireguard_mesh_peers: - - number: <peer number> - key: '<peer pub key>' - address: '< peer wg mesh ipv6 ula>' - endpoint: '< peer public ipv6 >' - mac: '< own mac for mesh interface with peer >' -wireguard_bb_key: '< priv key >' + wireguard_mesh_endpoint: '< peer public ipv6 >' + wireguard_mesh_mac_prefix: '< mac = prefix + mesh_number >' +wireguard_bb_name: '< node name >' +wireguard_bb_endpoint: '< peer public ipv6 >' +wireguard_bb_priv_key: '< priv key >' +wireguard_bb_pub_key: '< pub key >' wireguard_bb_port: < port > -wireguard_bb_address: '< ipv6 wireguard backbone netz >' -wireguard_bb_gre_ipv4: '< ipv4 an gre tunneln >' -wireguard_bb_peers: - - name: '< name des interfaces >' - key: '< wireguard public key >' - address: '< ipv6 wireguard backbone netz >' - endpoint: '< peer public ipv6 >' - gre_ipv4: '< peer ipv4 an gre interface >' -mullvad_country: nl -mullvad_crt: | - -----BEGIN CERTIFICATE----- - ... - -----END CERTIFICATE----- -mullvad_key: | - -----BEGIN PRIVATE KEY----- - ... - -----END PRIVATE KEY----- -#influx_user: <user> -#influx_password: <password> -#munin_node_plugins: -# - name: cpu -# - name: df -# - name: df_inode -# - name: dhcp-pool -# - name: diskstats -# - name: entropy -# - name: fastd_peers -# plugin: fastd_ -# - name: fastd_traffic -# plugin: fastd_ -# - name: forks -# - name: fw_conntrack -# - name: fw_forwarded_local -# - name: fw_packets -# - name: if_bat0 -# plugin: if_ -# - name: if_err_bat0 -# plugin: if_err_ -# - name: if_ens3 -# plugin: if_ -# - name: if_err_ens3 -# plugin: if_err_ -# - name: if_ffmyk-mesh-vpn -# plugin: if_ -# - name: if_err_ffmyk-mesh-vpn -# plugin: if_err_ -# - name: if_mullvad -# plugin: if_ -# - name: if_err_mullvad -# plugin: if_err_ -# - name: interrupts -# - name: irqstats -# - name: load -# - name: memory -# - name: netstat -# - name: nginx_request -# - name: nginx_status -# - name: ntp_kernel_err -# - name: ntp_kernel_pll_freq -# - name: ntp_kernel_pll_off -# - name: ntp_offset -# - name: open_files -# - name: open_inodes -# - name: proc_pri -# - name: processes -# - name: swap -# - name: threads -# - name: uptime -# - name: users -# - name: vmstat +wireguard_bb_ipv4: '< wg bb ipv4 >' +wireguard_bb_ipv6: '< wg bb ipv6 (fe80::) >' |