wireguard: module and peers configurations

Add a new module to automatically configure the peers for wireguard. The module needs a configuration file (in `configs/wireguard.toml`) which lists all the peers, their IP and and their public keys. The secret keys is encrypted as a secret with agenix. There's some initial documentation on how to use this setup.
author: Franck Cuny <franck@fcuny.net> 2022-02-21 13:33:51 -0800
committer: Franck Cuny <franck@fcuny.net> 2022-02-21 13:33:51 -0800
commit: cd9c8ec5fdbe4874c7be95c80f8ab86999b30390 (patch)
tree: 513331627090ae863c064cf2662ba77906e6f54a /configs/wireguard.toml
parent: secrets: initial config and a first secret (diff)
download: infra-cd9c8ec5fdbe4874c7be95c80f8ab86999b30390.tar.gz
1 files changed, 15 insertions, 0 deletions
diff --git a/configs/wireguard.toml b/configs/wireguard.toml
new file mode 100644
index 0000000..0012ba9
--- /dev/null
+++ b/configs/wireguard.toml
@@ -0,0 +1,15 @@
+mask4 = 32
+subnet4 = "192.168.6"
+
+[peers.aptos]
+ipv4 = 110
+key = "DP3caAlh07OOU61u2L2QfEhakt/mVEGrMBVONNvpNhU="
+
+[peers.nas]
+ipv4 = 10
+key = "SFlgoY+fQDUnI2D6Xp3JhqFKWsZABqahCv8IgKPWizA="
+
+[peers.rtr]
+ipv4= 1
+key = "P4gxkIoQ9Ep6QqfTquJYbBkMPDJQkVE9v1eYh/uJwG8="
+
author	Franck Cuny <franck@fcuny.net>	2022-02-21 13:33:51 -0800
committer	Franck Cuny <franck@fcuny.net>	2022-02-21 13:33:51 -0800
commit	cd9c8ec5fdbe4874c7be95c80f8ab86999b30390 (patch)
tree	513331627090ae863c064cf2662ba77906e6f54a /configs/wireguard.toml
parent	secrets: initial config and a first secret (diff)
download	infra-cd9c8ec5fdbe4874c7be95c80f8ab86999b30390.tar.gz