summaryrefslogtreecommitdiff
path: root/host_vars
diff options
context:
space:
mode:
authorNiklas Yann Wettengel <niyawe@niyawe.de>2018-02-10 20:38:49 +0100
committerNiklas Yann Wettengel <niyawe@niyawe.de>2018-02-10 20:38:49 +0100
commitce3ca9e97c60660f2e491204cd0359abb4a05aa4 (patch)
tree8f2826ec483537b8024a54cc48d9ab783681158e /host_vars
parentd527f8e6d0fbae1d994b1496d49cde28d7e18d0f (diff)
fastd sample config up
Diffstat (limited to 'host_vars')
-rw-r--r--host_vars/fastd90
1 files changed, 12 insertions, 78 deletions
diff --git a/host_vars/fastd b/host_vars/fastd
index 1b5d430..5f60540 100644
--- a/host_vars/fastd
+++ b/host_vars/fastd
@@ -4,6 +4,7 @@ sites:
- name: '<site kürzel>'
net4: '<ipv4 netz>'
net6: '<ipv6 netz>'
+ site_net6: '<site netz>'
fastd_secret: <fastd secret key>
fastd_mesh_mac: '<mesh mac>
fastd_port1: <erster port>
@@ -14,84 +15,17 @@ sites:
dhcp_netmask: '<netzmaske>'
dhcp_start: <ipv4>
dhcp_end: <ipv4>
- wireguard_mesh_key: '< priv key >'
+ wireguard_mesh_number: 1
+ wireguard_mesh_priv_key: '< priv key >'
+ wireguard_mesh_pub_key: '< pub key >'
wireguard_mesh_port: < wg mesh port>
wireguard_mesh_address: '< own wg mesh ipv6 ula>'
- wireguard_mesh_peers:
- - number: <peer number>
- key: '<peer pub key>'
- address: '< peer wg mesh ipv6 ula>'
- endpoint: '< peer public ipv6 >'
- mac: '< own mac for mesh interface with peer >'
-wireguard_bb_key: '< priv key >'
+ wireguard_mesh_endpoint: '< peer public ipv6 >'
+ wireguard_mesh_mac_prefix: '< mac = prefix + mesh_number >'
+wireguard_bb_name: '< node name >'
+wireguard_bb_endpoint: '< peer public ipv6 >'
+wireguard_bb_priv_key: '< priv key >'
+wireguard_bb_pub_key: '< pub key >'
wireguard_bb_port: < port >
-wireguard_bb_address: '< ipv6 wireguard backbone netz >'
-wireguard_bb_gre_ipv4: '< ipv4 an gre tunneln >'
-wireguard_bb_peers:
- - name: '< name des interfaces >'
- key: '< wireguard public key >'
- address: '< ipv6 wireguard backbone netz >'
- endpoint: '< peer public ipv6 >'
- gre_ipv4: '< peer ipv4 an gre interface >'
-mullvad_country: nl
-mullvad_crt: |
- -----BEGIN CERTIFICATE-----
- ...
- -----END CERTIFICATE-----
-mullvad_key: |
- -----BEGIN PRIVATE KEY-----
- ...
- -----END PRIVATE KEY-----
-#influx_user: <user>
-#influx_password: <password>
-#munin_node_plugins:
-# - name: cpu
-# - name: df
-# - name: df_inode
-# - name: dhcp-pool
-# - name: diskstats
-# - name: entropy
-# - name: fastd_peers
-# plugin: fastd_
-# - name: fastd_traffic
-# plugin: fastd_
-# - name: forks
-# - name: fw_conntrack
-# - name: fw_forwarded_local
-# - name: fw_packets
-# - name: if_bat0
-# plugin: if_
-# - name: if_err_bat0
-# plugin: if_err_
-# - name: if_ens3
-# plugin: if_
-# - name: if_err_ens3
-# plugin: if_err_
-# - name: if_ffmyk-mesh-vpn
-# plugin: if_
-# - name: if_err_ffmyk-mesh-vpn
-# plugin: if_err_
-# - name: if_mullvad
-# plugin: if_
-# - name: if_err_mullvad
-# plugin: if_err_
-# - name: interrupts
-# - name: irqstats
-# - name: load
-# - name: memory
-# - name: netstat
-# - name: nginx_request
-# - name: nginx_status
-# - name: ntp_kernel_err
-# - name: ntp_kernel_pll_freq
-# - name: ntp_kernel_pll_off
-# - name: ntp_offset
-# - name: open_files
-# - name: open_inodes
-# - name: proc_pri
-# - name: processes
-# - name: swap
-# - name: threads
-# - name: uptime
-# - name: users
-# - name: vmstat
+wireguard_bb_ipv4: '< wg bb ipv4 >'
+wireguard_bb_ipv6: '< wg bb ipv6 (fe80::) >'