wiregard on gerard and database on merlin
This commit is contained in:
parent
2def4bb733
commit
29f574c6fe
@ -59,6 +59,29 @@ systemd_mounts:
|
|||||||
- vers=3.0
|
- vers=3.0
|
||||||
- mfsymlinks
|
- mfsymlinks
|
||||||
automount: true
|
automount: true
|
||||||
|
diskstation_git:
|
||||||
|
share: diskstation.ducamps.win:/volume2/git
|
||||||
|
mount: /mnt/diskstation/git
|
||||||
|
type: nfs
|
||||||
|
options:
|
||||||
|
- " "
|
||||||
|
automount: true
|
||||||
|
diskstation_CardDav:
|
||||||
|
share: diskstation.ducamps.win:/volume2/CardDav
|
||||||
|
mount: /mnt/diskstation/CardDav
|
||||||
|
type: nfs
|
||||||
|
options:
|
||||||
|
- " "
|
||||||
|
automount: true
|
||||||
|
diskstation_music:
|
||||||
|
share: diskstation.ducamps.win:/volume2/music
|
||||||
|
mount: /mnt/diskstation/music
|
||||||
|
type: nfs
|
||||||
|
options:
|
||||||
|
- " "
|
||||||
|
automount: true
|
||||||
|
|
||||||
|
|
||||||
credentials_files:
|
credentials_files:
|
||||||
1:
|
1:
|
||||||
type: smb
|
type: smb
|
||||||
@ -71,4 +94,6 @@ credentials_files:
|
|||||||
systemd_mounts_enabled:
|
systemd_mounts_enabled:
|
||||||
- diskstation_nomad
|
- diskstation_nomad
|
||||||
- hetzner_storage
|
- hetzner_storage
|
||||||
|
- diskstation_git
|
||||||
|
- diskstation_music
|
||||||
|
- diskstation_CardDav
|
||||||
|
@ -26,42 +26,22 @@ postgresql_users:
|
|||||||
|
|
||||||
postgresql_databases:
|
postgresql_databases:
|
||||||
- name: wikijs
|
- name: wikijs
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: en_US.UTF-8
|
|
||||||
owner: wikijs
|
owner: wikijs
|
||||||
- name: ttrss
|
- name: ttrss
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: ttrss
|
owner: ttrss
|
||||||
- name: gitea
|
- name: gitea
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: gitea
|
owner: gitea
|
||||||
- name: supysonic
|
- name: supysonic
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: supysonic
|
owner: supysonic
|
||||||
- name: hass
|
- name: hass
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: hass
|
owner: hass
|
||||||
- name: nextcloud
|
- name: nextcloud
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: nextcloud
|
owner: nextcloud
|
||||||
- name: vaultwarden
|
- name: vaultwarden
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: vaultwarden
|
owner: vaultwarden
|
||||||
- name: drone
|
- name: drone
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: drone
|
owner: drone
|
||||||
- name: dendrite
|
- name: dendrite
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: dendrite
|
owner: dendrite
|
||||||
- name: paperless
|
- name: paperless
|
||||||
lc_collate: fr_FR.UTF-8
|
|
||||||
lc_ctype: fr_FR.UTF-8
|
|
||||||
owner: paperless
|
owner: paperless
|
||||||
|
@ -90,4 +90,3 @@ credentials_files:
|
|||||||
path: /etc/creds/.diskstation_credentials
|
path: /etc/creds/.diskstation_credentials
|
||||||
username: admin
|
username: admin
|
||||||
password: "{{ lookup('hashi_vault','secret=secrets/data/ansible/storage:diskstation_admin') }}"
|
password: "{{ lookup('hashi_vault','secret=secrets/data/ansible/storage:diskstation_admin') }}"
|
||||||
|
|
||||||
|
@ -1,3 +1,18 @@
|
|||||||
---
|
---
|
||||||
ansible_host: "192.168.1.41"
|
ansible_host: "192.168.1.41"
|
||||||
ansible_python_interpreter: "/usr/bin/python3"
|
ansible_python_interpreter: "/usr/bin/python3"
|
||||||
|
wireguard_address: "10.0.0.5/24"
|
||||||
|
wireguard_allowed_ips: "10.0.0.5/32,192.168.1.0/24"
|
||||||
|
perrsistent_keepalive: "30"
|
||||||
|
wireguard_endpoint: ""
|
||||||
|
|
||||||
|
wireguard_postup:
|
||||||
|
- iptables -A FORWARD -i wg0 -j ACCEPT
|
||||||
|
- iptables -A FORWARD -o wg0 -j ACCEPT
|
||||||
|
- iptables -t nat -A POSTROUTING -o eno1 -j MASQUERADE
|
||||||
|
|
||||||
|
wireguard_postdown:
|
||||||
|
- iptables -D FORWARD -i wg0 -j ACCEPT
|
||||||
|
- iptables -D FORWARD -o wg0 -j ACCEPT
|
||||||
|
- iptables -t nat -D POSTROUTING -o eno1 -j MASQUERADE
|
||||||
|
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
---
|
---
|
||||||
ansible_host: 10.0.0.4
|
ansible_host: 65.109.13.133
|
||||||
|
|
||||||
wireguard_address: "10.0.0.4/24"
|
wireguard_address: "10.0.0.4/24"
|
||||||
wireguard_endpoint: "65.109.13.133"
|
wireguard_endpoint: "65.109.13.133"
|
||||||
|
@ -6,6 +6,7 @@ gerard
|
|||||||
corwin
|
corwin
|
||||||
merlin
|
merlin
|
||||||
|
|
||||||
|
|
||||||
[dhcp]
|
[dhcp]
|
||||||
gerard
|
gerard
|
||||||
|
|
||||||
@ -13,10 +14,11 @@ gerard
|
|||||||
corwin
|
corwin
|
||||||
oscar
|
oscar
|
||||||
merlin
|
merlin
|
||||||
|
gerard
|
||||||
|
|
||||||
[database]
|
[database]
|
||||||
oscar
|
oscar
|
||||||
|
merlin
|
||||||
|
|
||||||
[rsyncd]
|
[rsyncd]
|
||||||
oscar
|
oscar
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user