From 663c6c74c629fc3785a9f9846e5be104e10c78ca Mon Sep 17 00:00:00 2001
From: Niklas Yann Wettengel <niyawe@niyawe.de>
Date: Fri, 26 Jan 2018 15:37:08 +0100
Subject: uplink: add additional peers

---
 roles/install_wireguard_backbone/templates/down2.sh.j2 | 5 +++++
 roles/install_wireguard_backbone/templates/up2.sh.j2   | 8 ++++++++
 roles/install_wireguard_backbone/templates/wg2.conf.j2 | 9 +++++++++
 3 files changed, 22 insertions(+)
 create mode 100644 roles/install_wireguard_backbone/templates/down2.sh.j2
 create mode 100644 roles/install_wireguard_backbone/templates/up2.sh.j2
 create mode 100644 roles/install_wireguard_backbone/templates/wg2.conf.j2

(limited to 'roles/install_wireguard_backbone/templates')

diff --git a/roles/install_wireguard_backbone/templates/down2.sh.j2 b/roles/install_wireguard_backbone/templates/down2.sh.j2
new file mode 100644
index 0000000..fbdd387
--- /dev/null
+++ b/roles/install_wireguard_backbone/templates/down2.sh.j2
@@ -0,0 +1,5 @@
+#!/bin/bash
+ip -4 rule del iif bb{{ item.name }} table ffmyk
+ip -6 rule del iif bb{{ item.name }} table ffmyk
+ip link set down dev bb{{ item.name }}
+ip link del bb{{ item.name }}
diff --git a/roles/install_wireguard_backbone/templates/up2.sh.j2 b/roles/install_wireguard_backbone/templates/up2.sh.j2
new file mode 100644
index 0000000..dae70a4
--- /dev/null
+++ b/roles/install_wireguard_backbone/templates/up2.sh.j2
@@ -0,0 +1,8 @@
+#!/bin/bash
+ip link add bb{{ item.name }} type wireguard
+wg setconf bb{{ item.name }} /etc/wireguard/wgbb{{ item.name }}.conf
+ip addr add {{ wireguard_bb_ipv6 }} dev bb{{ item.name }}
+ip addr add {{ wireguard_bb_ipv4 }}/32 peer {{ item.ipv4 }}/32 dev bb{{ item.name }}
+ip link set up dev bb{{ item.name }}
+ip -4 rule add iif bb{{ item.name }} table ffmyk priority 10
+ip -6 rule add iif bb{{ item.name }} table ffmyk priority 10
diff --git a/roles/install_wireguard_backbone/templates/wg2.conf.j2 b/roles/install_wireguard_backbone/templates/wg2.conf.j2
new file mode 100644
index 0000000..cbccda8
--- /dev/null
+++ b/roles/install_wireguard_backbone/templates/wg2.conf.j2
@@ -0,0 +1,9 @@
+[Interface]
+ListenPort = {{ item.port }}
+PrivateKey = {{ wireguard_bb_priv_key }}
+
+[Peer]
+PublicKey = {{ item.pub_key }}
+AllowedIPs = 0.0.0.0/0,::/0
+Endpoint = [{{ item.endpoint }}]:{{ wireguard_bb_port }}
+PersistentKeepalive = 30
-- 
cgit v1.2.3-54-g00ecf