kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-12-07 09:56:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
eca7ffea3613c6b012f4194fdaf1a6dc1b630b0f
computer-playbook/roles/svc-net-wireguard-core
History
Kevin Veen-Birkenbach 91d5ba35d1 Add container-aware execution logic and CI stability fixes 
- Introduce global IS_CONTAINER flag based on ansible_virtualization facts
- Skip systemd-based handlers and tasks when running inside containers
- Extend EXCLUDED_ROLES list in GitHub Actions test-deploy workflow
- Ensure docker.sock is mounted for all CI deploy stages
- Improve sys-svc-docker by suppressing service restarts inside containers
- Add meta: flush_handlers to properly trigger delayed docker restarts
- Update sys-service handlers with container guards
- Update sys-timer tasks to avoid systemctl inside CI containers
- Enhance drv-non-free role with Manjaro detection and mhwd fallback warning
- Skip swapfile generation in containers
- Minor service template fixes and cleanup in proxy.conf.j2

Details and discussion: https://chatgpt.com/share/6930a4ca-56f4-800f-9b3d-4791f040a03b
2025-12-03 22:00:18 +01:00
..
files
handlers
meta
tasks
vars
Administration.md
Add container-aware execution logic and CI stability fixes
2025-12-03 22:00:18 +01:00
README.md

README.md

Wireguard

Description

This role manages Wireguard on the host. It installs the necessary Wireguard packages, configures sysctl settings for IPv4/IPv6 forwarding, and deploys the Wireguard configuration file to enable the VPN service using wg-quick.

Overview

Optimized for both Arch Linux and Ubuntu/Debian, this role performs the following tasks:

  • Installs Wireguard tools using the appropriate package manager.
  • Copies a sysctl configuration file to enable IP forwarding and proper IPv6 settings.
  • Deploys a host-specific Wireguard configuration file to /etc/wireguard/wg0.infinito.conf.
  • Uses systemd handlers to restart the Wireguard service and reload sysctl settings.

Purpose

The primary purpose of this role is to set up and manage a Wireguard VPN configuration on the host. By automating package installation and configuration file deployment, it ensures that the VPN service is enabled with optimal network settings for secure connectivity.

Features

  • Multi-Platform Support: Installs Wireguard tools using pacman on Arch Linux and apt on Ubuntu/Debian.
  • Sysctl Configuration: Deploys a sysctl configuration file to manage IPv4/IPv6 forwarding and related network parameters.
  • Wireguard Configuration: Copies a host-specific Wireguard configuration file to /etc/wireguard/wg0.infinito.conf.
  • Service Management: Provides handlers to restart the Wireguard service and reload sysctl settings.

Administration

For detailed client setup instructions, please see the Administration file.

Reference in New Issue View Git Blame Copy Permalink