Commit graph

52 commits

Author SHA1 Message Date
e6f6229b87
bundles/wireguard: do not generate PSKs for unmanaged nodes 2024-03-23 10:19:15 +01:00
104d1f11bf
bundles/wireguard: support s2s connection to other services 2024-03-22 22:52:12 +01:00
3b7e14755c
bundles/wireguard: clean up leftovers 2023-12-25 10:19:34 +01:00
86b8cd8edf
bundles/wireguard: remove wg_health_check 2023-12-10 17:01:01 +01:00
f3269ce979
bundle/wireguard: fix firewall for home.router 2023-12-10 16:59:53 +01:00
63d42c6b42
bundles/wireguard: add no_autoconnect option 2023-12-10 16:58:52 +01:00
ffb5125ddd
bundles/wireguard: add option to set settings based on a specific peer 2023-12-10 14:48:24 +01:00
75ef2e7bb9
bundles/wireguard: uninstall dkms package for debian > 11 2023-11-12 11:00:43 +01:00
cd48cf495d
rework firewall setup 2023-09-24 21:01:51 +02:00
a09b5b98ca
bundles/wireguard: disable health_checks if auto_connection is false 2023-09-24 18:57:27 +02:00
458606649e
bundles/wireguard: add option to route networks through vpn 2023-09-24 18:56:50 +02:00
0e40b03060
bundles/wireguard: only try to do full mesh if *we* are doing full mesh 2023-09-24 18:56:18 +02:00
07de570175
auto-generate full wireguard mesh between all nodes in libs.s2s.WG_AUTOGEN_NODES 2023-09-23 15:06:16 +02:00
3a0ed4a7f5
bundles/wireguard: autogenerate port number based on index in WG_AUTOGEN_NODES 2023-09-23 15:04:47 +02:00
d47f7db708
bundles/wireguard: only try to auto-generate ips and ports if nodes are present in WG_AUTOGEN_NODES 2023-09-23 15:04:11 +02:00
0d79216ae5
bundles/wireguard: fix KeyError when running with no peers 2023-09-23 15:03:44 +02:00
4f260932c3
bundles/wireguard: health checks for everyone 2023-09-12 20:15:19 +02:00
234e81431d
bundles/wireguard: easier snat setup 2023-09-10 21:27:03 +02:00
fe4d4abc9c
bundles/wireguard: fix max interface length 2023-09-09 16:10:49 +02:00
7df6b1d13a
bundles/wireguard: name wg interfaces according to their peers 2023-09-09 13:55:03 +02:00
4122a7ccf8
isort the repo 2023-02-05 17:30:58 +01:00
c8dd809057
bundles/wireguard: better nftables rules 2022-12-11 17:42:39 +01:00
9730a2be13
bundles/wireguard: fix permissions for wireguard netdev files 2022-05-16 10:48:26 +02:00
5179edb458
bundles/wireguard: fix forwarding firewall rules 2022-03-13 15:15:08 +01:00
e181be3fc6
bundles/wireguard: better dependency management 2022-03-10 21:00:42 +01:00
c7e5002f17
bundles/wireguard: support arch linux and other netmasks than /31 2022-03-09 13:05:01 +01:00
0101e0c92d
bundles/nftables: store rules in dedicated files instead of nftables.conf 2021-12-14 15:27:30 +01:00
0412c9042a
bundles/wireguard: fix stderr handling of wg_health_check 2021-10-31 09:49:37 +01:00
ee86b5a121
bundles/wireguard: less spammy output for wg_health_check 2021-10-30 19:36:20 +02:00
095d425de1
bundles/wireguard: do not run wg_health_check during bw apply 2021-10-14 09:02:01 +02:00
9188b28b7a
bundles/wireguard: add wg_health_check 2021-10-14 08:54:54 +02:00
8656f99f8e
bundles/wireguard: re-add reconnect script for added resiliency 2021-09-30 06:37:42 +02:00
5f1f4fd654
bundles/wireguard: add option 'snat_to' for connections 2021-09-29 19:43:29 +02:00
902840ee7f
bundles/wireguard: use one wireguard connection per peer instead of one for all 2021-09-29 19:27:13 +02:00
d569b00960
modify nodes and bundles for new nftables syntax 2021-06-03 13:59:36 +02:00
8fd83241ca
bundles: ensure apt/repos/*/items is a set 2021-04-30 12:49:59 +02:00
6772b3b5d0
bundles: various fixes for telegraf plugins 2021-04-24 11:45:58 +02:00
a37d31973a
bundles: add some telegraf plugins 2021-04-24 09:14:25 +02:00
f8bbe00d47
overall better handling and usage of exceptions 2021-04-02 18:57:13 +02:00
5b276368b8
bundles/wireguard: iptables/bundle_rules should be a list 2021-04-01 17:13:24 +02:00
6e423c24fb
bundles/wireguard: rework metadata.py 2021-04-01 16:27:31 +02:00
6a6198c9b9
bundles/wireguard: move iptables rules to metadata reactor 2021-03-21 15:26:29 +01:00
52cab71fec
bundles/wireguard: also allow outgoing traffic
How did this ever work without this rule?
2021-03-15 09:00:35 +01:00
b06532241b
bundles: use metastack syntax for metadata.get() 2021-02-18 18:12:25 +01:00
d2260b4699
bundles/wireguard: use PersistentKeepalive to work around intermittent connection issues 2021-02-15 15:16:44 +01:00
56fce7d460
bundles/wireguard: add exclude_from_monitoring option for wireguard peers 2021-02-14 21:35:37 +01:00
2d42e5f7dd
update bw to 4.3, add .provides() to metadata reactors 2021-01-07 18:44:38 +01:00
1d06d86205
bundles/wireguard: fix early fault resolve in metadata.py 2020-12-10 16:39:26 +01:00
67d8293201
bundles/wireguard: one icinga2 check per peer 2020-11-30 06:43:46 +01:00
014b37082c
bundles/wireguard: send pings over vpn, if pppd reconnects 2020-11-27 03:09:37 +01:00