kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-26 21:45:20 +02:00
Code Issues Packages Projects Releases Wiki Activity
computer-playbook/roles/svc-net-wireguard-core/README.md
Kevin Veen-Birkenbach 2569abc0be
Refactor systemctl services and timers 
- Unified service templates into generic systemctl templates
- Introduced reusable filter plugins for script path handling
- Updated path variables and service/timer definitions
- Migrated roles (backup, cleanup, repair, etc.) to use systemctl role
- Added sys-daemon role for core systemd cleanup
- Simplified timer handling via sys-timer role

Note: This is a large refactor and some errors may still exist. Further testing and adjustments will be needed.
2025-08-18 21:22:16 +02:00

1.8 KiB
Raw Blame History

Wireguard

Description

This role manages Wireguard on the host. It installs the necessary Wireguard packages, configures sysctl settings for IPv4/IPv6 forwarding, and deploys the Wireguard configuration file to enable the VPN service using wg-quick.

Overview

Optimized for both Arch Linux and Ubuntu/Debian, this role performs the following tasks:

  • Installs Wireguard tools using the appropriate package manager.
  • Copies a sysctl configuration file to enable IP forwarding and proper IPv6 settings.
  • Deploys a host-specific Wireguard configuration file to /etc/wireguard/wg0.infinito.conf.
  • Uses systemd handlers to restart the Wireguard service and reload sysctl settings.

Purpose

The primary purpose of this role is to set up and manage a Wireguard VPN configuration on the host. By automating package installation and configuration file deployment, it ensures that the VPN service is enabled with optimal network settings for secure connectivity.

Features

  • Multi-Platform Support: Installs Wireguard tools using pacman on Arch Linux and apt on Ubuntu/Debian.
  • Sysctl Configuration: Deploys a sysctl configuration file to manage IPv4/IPv6 forwarding and related network parameters.
  • Wireguard Configuration: Copies a host-specific Wireguard configuration file to /etc/wireguard/wg0.infinito.conf.
  • Service Management: Provides handlers to restart the Wireguard service and reload sysctl settings.

Administration

For detailed client setup instructions, please see the Administration file.