fix: declare main interface variable for stagging

2024-02-04 21:22:20 +01:00 · 2024-02-04 21:22:20 +01:00 · 2db6061516
commit 2db6061516
parent 3367c78314
4 changed files with 22 additions and 8 deletions
--- a/ansible/host_vars/gerard-dev
+++ b/ansible/host_vars/gerard-dev
@ -1,4 +1,8 @@
 ---
 default_interface: eth0
 vault_iface: "{{ default_interface}}"
 ansible_host: gerard-dev.ducamps-dev.eu
 wireguard_address: "10.0.1.6/24"
 perrsistent_keepalive: "20"
 wireguard_endpoint: ""
@ -6,10 +10,10 @@ wireguard_endpoint: ""
 wireguard_postup:
  - iptables -A FORWARD -i wg0 -j ACCEPT
  - iptables -A FORWARD -o wg0 -j ACCEPT
-  - iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -A POSTROUTING -o {{ default_interface }} -j MASQUERADE
 wireguard_postdown:
  - iptables -D FORWARD -i wg0 -j ACCEPT
  - iptables -D FORWARD -o wg0 -j ACCEPT
-  - iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -D POSTROUTING -o {{ default_interface}} -j MASQUERADE
--- a/ansible/host_vars/merlin-dev
+++ b/ansible/host_vars/merlin-dev
@ -1,4 +1,8 @@
 ---
 ansible_host: merlin-dev.ducamps-dev.eu
 default_interface: eth0
 vault_iface: "{{ default_interface}}"
 wireguard_address: "10.0.1.4/24"
 wireguard_endpoint: "{{ ansible_default_ipv4.address }}"
 wireguard_persistent_keepalive: "30"
@ -6,12 +10,12 @@ wireguard_persistent_keepalive: "30"
 wireguard_postup:
  - iptables -A FORWARD -o %i -j ACCEPT
  - iptables -A FORWARD -i %i -j ACCEPT
-  - iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -A POSTROUTING -o {{ default_interface }} -j MASQUERADE
 wireguard_postdown:
  - iptables -D FORWARD -i %i -j ACCEPT
  - iptables -D FORWARD -o %i -j ACCEPT
-  - iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -D POSTROUTING -o {{ default_interface }} -j MASQUERADE
 wireguard_unmanaged_peers:
  phone:
--- a/ansible/host_vars/nas-dev
+++ b/ansible/host_vars/nas-dev
@ -1,4 +1,7 @@
 ---
 ansible_host: nas-dev.ducamps-dev.eu
 default_interface: eth0
 vault_iface: "{{ default_interface}}"
 wireguard_address: "10.0.1.8/24"
 perrsistent_keepalive: "30"
 wireguard_endpoint: ""
@ -6,9 +9,9 @@ wireguard_endpoint: ""
 wireguard_postup:
  - iptables -A FORWARD -i wg0 -j ACCEPT
  - iptables -A FORWARD -o wg0 -j ACCEPT
-  - iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -A POSTROUTING -o {{ default_interface }} -j MASQUERADE
 wireguard_postdown:
  - iptables -D FORWARD -i wg0 -j ACCEPT
  - iptables -D FORWARD -o wg0 -j ACCEPT
-  - iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -D POSTROUTING -o {{ default_interface }} -j MASQUERADE
--- a/ansible/host_vars/oscar-dev
+++ b/ansible/host_vars/oscar-dev
@ -1,4 +1,7 @@
 ---
 ansible_host: oscar-dev.ducamps-dev.eu
 default_interface: eth0
 vault_iface: "{{ default_interface}}"
 wireguard_address: "10.0.1.2/24"
 perrsistent_keepalive: "30"
 wireguard_endpoint: ""
@ -6,9 +9,9 @@ wireguard_endpoint: ""
 wireguard_postup:
  - iptables -A FORWARD -i wg0 -j ACCEPT
  - iptables -A FORWARD -o wg0 -j ACCEPT
-  - iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -A POSTROUTING -o {{ default_interface }} -j MASQUERADE
 wireguard_postdown:
  - iptables -D FORWARD -i wg0 -j ACCEPT
  - iptables -D FORWARD -o wg0 -j ACCEPT
-  - iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
+  - iptables -t nat -D POSTROUTING -o {{ default_interface }} -j MASQUERADE