samsapti
/
pi-ansible
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
This repository has been archived on 2023-12-29. You can view files and clone it, but cannot push or open issues or pull requests.
pi-ansible/roles/docker_services/tasks/services/wireguard.yml

31 lines
804 B
YAML
Raw Normal View History

Add os_config role
2022-12-22 19:18:27 +00:00
# vim: ft=yaml.ansible
Add all services
2022-12-22 16:58:48 +00:00
---
- name: Create Wireguard volume directory
file:
name: "{{ services.wireguard.volume }}"
Add installation of apt-update-push
2022-12-23 14:54:29 +00:00
owner: root
Add all services
2022-12-22 16:58:48 +00:00
mode: u=rwx,g=rx,o=rx
state: directory
- name: Deploy Wireguard Docker container
docker_container:
name: wireguard
Remove unneeded quotes
2023-01-03 21:30:22 +00:00
image: linuxserver/wireguard:{{ services.wireguard.version }}
Add all services
2022-12-22 16:58:48 +00:00
restart_policy: unless-stopped
env:
SERVERURL: "{{ services.wireguard.domain }}"
Fix container communication
2022-12-28 17:24:27 +00:00
SERVERPORT: '51820'
Add all services
2022-12-22 16:58:48 +00:00
PEERS: "{{ secrets.wireguard.peers }}"
PEERDNS: auto
TZ: "{{ timezone }}"
volumes:
- "{{ services.wireguard.volume }}:/config:rw"
- /lib/modules:/lib/modules:rw
published_ports:
Remove unneeded quotes
2023-01-03 21:30:22 +00:00
- 51820:51820/udp
Add all services
2022-12-22 16:58:48 +00:00
capabilities:
- net_admin
- sys_module
sysctls:
net.ipv4.conf.all.src_valid_mark: 1