bundlewrap/nodes/htz-cloud/wireguard.py

76 lines
1.9 KiB
Python
Raw Normal View History

nodes['htz-cloud.wireguard'] = {
'hostname': '162.55.54.226',
'bundles': {
2021-09-29 17:47:14 +00:00
'bird',
'wireguard',
},
'groups': {
'debian-bookworm',
},
'metadata': {
'interfaces': {
'eth0': {
'ips': {
'162.55.54.226',
'2a01:4f8:1c1c:884d::1/64'
},
'gateway4': '172.31.1.1',
'gateway6': 'fe80::1'
},
'ens10': {
'ips': {
'172.19.137.2/32',
},
'routes': {
'172.19.137.0/24': {
'via': '172.19.137.1',
},
},
},
},
'backups': {
'exclude_from_backups': True,
},
2021-09-29 17:47:14 +00:00
'bird': {
'static_routes': {
'172.19.137.0/24',
'172.19.136.64/31',
2021-09-29 17:47:14 +00:00
},
},
2023-09-09 20:46:09 +00:00
'nftables': {
2023-10-16 20:26:29 +00:00
'forward': {
2023-09-09 20:46:09 +00:00
'50-router': [
2023-09-24 18:59:58 +00:00
'ct state { related, established } accept',
'oifname eth0 accept',
2023-09-09 20:46:09 +00:00
],
2023-10-16 20:26:29 +00:00
},
'input': {
2023-09-24 18:59:58 +00:00
'50-wireguard': [
'udp dport 1194 accept',
2023-09-24 18:59:58 +00:00
],
},
'postrouting': {
'50-router': [
'oifname eth0 masquerade',
],
2023-09-09 20:46:09 +00:00
},
},
'vm': {
'cpu': 1,
'ram': 2,
},
'wireguard': {
2023-09-10 19:19:23 +00:00
'snat_ip': '172.19.137.2',
'peers': {
'kunsi-p14s': {
'endpoint': None,
'exclude_from_monitoring': True,
'my_ip': '172.19.136.64',
'my_port': 1194,
'their_ip': '172.19.136.65',
},
},
},
},
}