sheppy/no-secrets-athq-ansible
1
0
Fork 0
mirror of https://github.com/FAUSheppy/no-secrets-athq-ansible synced 2025-12-07 04:41:37 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: openvpn config

Browse Source
This commit is contained in:
Johnathen Sheppard
2024-07-20 12:21:59 +00:00
parent 708a996baf
commit 928e905fd7
3 changed files with 16 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
roles/openvpn/tasks/main.yaml
View File

@@ -12,13 +12,21 @@
with_items: with_items:
- atlantishq - atlantishq
- name: Create OpenVPN config dirs
file:
dest: "/etc/openvpn/{{ item.name }}-{{ item.dev_type }}/"
state: directory
with_items:
- { "name" : "atlantishq", "dev_type" : "tap", "port" : 7012, "proto" : "tcp" }
- { "name" : "atlantishq", "dev_type" : "tun", "port" : 7013, "proto" : "tcp" }
- name: Deploy OpenVPN configs - name: Deploy OpenVPN configs
template: template:
src: "{{ item }}.conf" src: "{{ item.name }}.conf"
dest: "/etc/openvpn/{{ item.name }}-{{ item.dev_type }}/{{ item.name }}-{{ item.dev_type }}.conf" dest: "/etc/openvpn/{{ item.name }}-{{ item.dev_type }}/{{ item.name }}-{{ item.dev_type }}.conf"
with_items: with_items:
- { "name" : "atlantishq", "dev_type" : "tap", "port" : 7012 } - { "name" : "atlantishq", "dev_type" : "tap", "port" : 7012, "proto" : "tcp" }
- { "name" : "atlantishq", "dev_type" : "tun", "port" : 7013 } - { "name" : "atlantishq", "dev_type" : "tun", "port" : 7013, "proto" : "tcp" }
- name: Openvpn Mgnt interface Pass file - name: Openvpn Mgnt interface Pass file
copy: copy:
@@ -60,12 +68,6 @@
src: "certificate-manager.yaml" src: "certificate-manager.yaml"
dest: "/opt/certificate-manager/" dest: "/opt/certificate-manager/"
- name: Log into private registry
docker_login:
registry: registry.atlantishq.de
username: docker
password: HISTORY_PURGED_SECRET
- name: Deploy compose templates - name: Deploy compose templates
community.docker.docker_compose: community.docker.docker_compose:
project_src: "/opt/certificate-manager/" project_src: "/opt/certificate-manager/"

8
roles/openvpn/templates/atlantishq.conf
View File

@@ -2,12 +2,12 @@ server 172.16.1.0 255.255.255.0
#server-ipv6 fd2a:aef:608:1::/64 #server-ipv6 fd2a:aef:608:1::/64
dev athq_sheppyvpn dev athq_sheppyvpn
dev-type {{ dev_type }} dev-type {{ item.dev_type }}
proto {{ proto }} proto {{ item.proto }}
port {{ port }} port {{ item.port }}
{% if dev_type == "tap" %} {% if item.dev_type == "tap" %}
topology subnet topology subnet
client-to-client client-to-client
{% endif %} {% endif %}

2
roles/openvpn/templates/certificate-manager.yaml
View File

@@ -1,5 +1,5 @@
certificate-manager: certificate-manager:
image: registry.atlantishq.de/certificate-manager:latest image: harbor-registry.atlantishq.de/atlantishq/certificate-manager:latest
restart: always restart: always
ports: ports:
- 6000:5000 - 6000:5000