Home Explore Help
Sign In
blaine
/
infra
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8b1451cad7
Branches Tags
infra
/
plays
/
restart-vpn.yml

restart-vpn.yml 759 B
History Raw

123456789101112131415161718192021222324252627282930 
  1. ---
    2. 

  2. - hosts: dhcp
    3. 

  3.   become: True
    4. 

  4.   gather_facts: False
    5. 

  5.   tasks:
    6. 

  6.     - name: Load potential endpoints
    7. 

  7.       include_vars:
    8. 

  8.         file: ../vars/vault.yaml
    9. 

  9. 

  10.     - name: Select a random endpoint
    11. 

  11.       set_fact:
    12. 

  12.         wg_info: "{{ vaulted_wg_info | shuffle | first }}"
    13. 

  13. 

  14.     - name: Record new endpoint config
    15. 

  15.       set_fact:
    16. 

  16.         wg_public_key: "{{ wg_info.pubkey }}"
    17. 

  17.         wg_endpoint: "{{ wg_info.endpoint }}"
    18. 

  18. 

  19.     - name: Update wireguard config
    20. 

  20.       template:
    21. 

  21.         src: ../roles/wg-gateway/templates/wg.conf.j2
    22. 

  22.         dest: /etc/wireguard/{{ wg_interface }}.conf
    23. 

  23.         owner: root
    24. 

  24.         group: root
    25. 

  25.         mode: '0644'
    26. 

  26. 

  27.     - name: Restart wireguard interface
    28. 

  28.       systemd:
    29. 

  29.         name: wg-quick@{{ wg_interface }}
    30. 

  30.         state: restarted
    31.