See defaults/main.yml for configuration parameters
- TODO: Check that Wireguard works as expected after setting it up with this role
- TODO: Are PostUp/PostDown iptables NAT rules required for my use case?
- TODO: Add automated tests for
wireguard_is_client: yes - TODO: Expand verify.yml for automated tests
- Arch Wiki on Wireguard -
see "Site to point" section, good tip on network-wide routes via router.
Also contains good explanation of
allowed-ipsparameter. - Linode guide for Wireguard - generic step-by-step guide this role is based on
- Ansible module:
net_static_route -
for configuring routes via VPN
- NOTE:
wg-quickshould be pretty good at infering which routes to setup (see man 8 wg-quick)
- NOTE: