diff --git a/ansible/wireguard/mkwgconf-p2p.sh b/ansible/wireguard/mkwgconf-p2p.sh index 9e65c98..f18a19a 100644 --- a/ansible/wireguard/mkwgconf-p2p.sh +++ b/ansible/wireguard/mkwgconf-p2p.sh @@ -11,7 +11,10 @@ PortB=51820 # Port ecoute extremite B AddressCwg=10.0.0.3/32 # Adresse VPN Wireguard extremite C EndpointC=172.16.0.110 # Adresse extremite C PortC=51820 # Port ecoute extremite C - +AddressDwg=10.0.0.3/32 # Adresse VPN Wireguard extremite D +EndpointD=10.121.38.35 # Adresse extremite D +PortD=61820 # Port ecoute extremite D + umask 077 ; wg genkey > endpoint-a.key wg pubkey < endpoint-a.key > endpoint-a.pub @@ -22,12 +25,17 @@ wg pubkey < endpoint-b.key > endpoint-b.pub wg genkey > endpoint-c.key wg pubkey < endpoint-c.key > endpoint-c.pub +wg genkey > endpoint-d.key +wg pubkey < endpoint-d.key > endpoint-d.pub + PKA=$(cat endpoint-a.key) pKA=$(cat endpoint-a.pub) PKB=$(cat endpoint-b.key) pKB=$(cat endpoint-b.pub) PKC=$(cat endpoint-c.key) pKC=$(cat endpoint-c.pub) +PKD=$(cat endpoint-d.key) +pKD=$(cat endpoint-d.pub) cat < wg0-1.conf # local settings for Endpoint A @@ -42,11 +50,18 @@ PublicKey = $pKB Endpoint = ${EndpointB}:$PortB AllowedIPs = $AddressBwg -# remote settings for Endpoint B +# remote settings for Endpoint C [Peer] PublicKey = $pKC Endpoint = ${EndpointC}:$PortC AllowedIPs = $AddressCwg + +# remote settings for Endpoint D +[Peer] +PublicKey = $pKD +Endpoint = ${EndpointD}:$PortD +AllowedIPs = $AddressDwg + FINI @@ -77,3 +92,17 @@ PublicKey = $pKA Endpoint = ${EndpointA}:$PortA AllowedIPs = $AddressAwg FINI + +cat < wg0-4.conf +# local settings for Endpoint D +[Interface] +PrivateKey = $PKD +Address = $AddressDwg +ListenPort = $PortD + +# remote settings for Endpoint A +[Peer] +PublicKey = $pKA +Endpoint = ${EndpointA}:$PortA +AllowedIPs = $AddressAwg +FINI diff --git a/ansible/wireguard/wg0-1.conf b/ansible/wireguard/wg0-1.conf new file mode 100644 index 0000000..7b7707c --- /dev/null +++ b/ansible/wireguard/wg0-1.conf @@ -0,0 +1,23 @@ +# local settings for Endpoint A +[Interface] +PrivateKey = qJP+UZ/VuTFnIySy4WRC7e2gRUsIUxTdCr6fGvr2NWg= +Address = 10.0.0.1/32 +ListenPort = 51820 + +# remote settings for Endpoint B +[Peer] +PublicKey = hjWFTzNbAMfNlETuO2qkdNOZnRQ24hkxN/1onfMJ2TA= +Endpoint = 172.16.0.111:51820 +AllowedIPs = 10.0.0.2/32 + +# remote settings for Endpoint C +[Peer] +PublicKey = aVqH5DwDiGQFXqbVbBFVF8HTcd/pIGHXnEOjBSPbklY= +Endpoint = 172.16.0.110:51820 +AllowedIPs = 10.0.0.3/32 + +# remote settings for Endpoint D +[Peer] +PublicKey = uyamrEFfja1bJh1StqsKk+tRSElIThWlqTO6MlOYGho= +Endpoint = 10.121.38.35:61820 +AllowedIPs = 10.0.0.3/32 diff --git a/ansible/wireguard/wg0-1.conf b/ansible/wireguard/wg0-1.conf deleted file mode 100644 index 72cbf65..0000000 --- a/ansible/wireguard/wg0-1.conf +++ /dev/null @@ -1,17 +0,0 @@ -# local settings for Endpoint A -[Interface] -PrivateKey = iBHlLJhN2+I03DxWxcde2dNg+TNNWIs0degDdfDjm2Q= -Address = 10.0.0.1/32 -ListenPort = 51820 - -# remote settings for Endpoint B -[Peer] -PublicKey = ScvzvZQlADyjcUVSNW9NDXBq6soG3LQgSgwB87rkNEY= -Endpoint = 172.16.0.111:51820 -AllowedIPs = 10.0.0.2/32 - -# remote settings for Endpoint C -[Peer] -PublicKey = l5YUM/2Jl5BulqObV4U38WNHC8I9iM1J6Os5lT2BMU4= -Endpoint = 172.16.0.110:51820 -AllowedIPs = 10.0.0.3/32 diff --git a/ansible/wireguard/wg0-2.conf b/ansible/wireguard/wg0-2.conf index 9ff41ea..169ee0e 100644 --- a/ansible/wireguard/wg0-2.conf +++ b/ansible/wireguard/wg0-2.conf @@ -1,11 +1,11 @@ # local settings for Endpoint B [Interface] -PrivateKey = SCkd5aD3cMZpgbfGchITrP/Q2GWvHh6ZCav0Mcwr1EU= +PrivateKey = 0JaKofdq8uRfWpSj9PREC83DiQMjt3tnAu+9pA48F38= Address = 10.0.0.2/32 ListenPort = 51820 # remote settings for Endpoint A [Peer] -PublicKey = 0U4DWwLi8IBJxgQgehV3GqHb7DxW1H/CkDAwhNmsPXk= +PublicKey = 8Mo+pfjCRP+HqE2MM5b9jHudBcTdPktd7pOCvfdk8Qs= Endpoint = 172.16.0.112:51820 AllowedIPs = 10.0.0.1/32 diff --git a/ansible/wireguard/wg0-3.conf b/ansible/wireguard/wg0-3.conf index 9b5eeb6..80e2624 100644 --- a/ansible/wireguard/wg0-3.conf +++ b/ansible/wireguard/wg0-3.conf @@ -1,11 +1,11 @@ # local settings for Endpoint C [Interface] -PrivateKey = eIyUKQugq3S5V+yeBK473KMvjE/izvuvdoiWvA5GHWY= +PrivateKey = WLKGrMqV01aTl/YEYJTI7RdQZyYQOF1EoBv0PEc0KEw= Address = 10.0.0.3/32 ListenPort = 51820 # remote settings for Endpoint A [Peer] -PublicKey = 0U4DWwLi8IBJxgQgehV3GqHb7DxW1H/CkDAwhNmsPXk= +PublicKey = 8Mo+pfjCRP+HqE2MM5b9jHudBcTdPktd7pOCvfdk8Qs= Endpoint = 172.16.0.112:51820 AllowedIPs = 10.0.0.1/32 diff --git a/ansible/wireguard/wg0-4.conf b/ansible/wireguard/wg0-4.conf new file mode 100644 index 0000000..38fc416 --- /dev/null +++ b/ansible/wireguard/wg0-4.conf @@ -0,0 +1,11 @@ +# local settings for Endpoint D +[Interface] +PrivateKey = kLs2zk9VQS9D4OD2G1lExx9c+zvuVvgeCytDpvK1s24= +Address = 10.0.0.3/32 +ListenPort = 61820 + +# remote settings for Endpoint A +[Peer] +PublicKey = 8Mo+pfjCRP+HqE2MM5b9jHudBcTdPktd7pOCvfdk8Qs= +Endpoint = 172.16.0.112:51820 +AllowedIPs = 10.0.0.1/32