-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathplaybook.yml
42 lines (38 loc) · 1.46 KB
/
playbook.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
---
- hosts: all
vars:
servernumber: "3" #The number of the supernode
roles:
- role: geerlingguy.ntp
ntp_enabled: true
ntp_timezone: Europe/Berlin
ntp_manage_config: true
ntp_servers:
- 0.de.pool.ntp.org
- 1.de.pool.ntp.org
- 2.de.pool.ntp.org
- 3.de.pool.ntp.org
ntp_restrict:
- "127.0.0.1"
- "::1"
- role: batmancompile
batman_adv_number: 2020.1 # Which version should be installed?
- role: network
- role: pdns-recursor
- role: dhcpd
network_ipv4: "10.80.116" #IPv4 and
network_ipv6: "fdd3:5d20:b5dd:fe00:3000::" #IPv6 Range
dhcpd_ipv4_max: "10.80.120.254" #Max IP which should be served via dhcpd
dhcpd_ipv6_max: "fdd3:5d20:b5dd:fe00:3fff:ffff:ffff:ffff"
# Which IPV4 Blocks should be ignored?
dhcpd_ipv4_blockstart1: "10.80.0.0"
dhcpd_ipv4_blockend1: "10.80.115.255"
dhcpd_ipv4_blockstart2: "10.80.121.0"
dhcpd_ipv4_blockend2: "10.80.255.255"
- role: wireguard
#<insert your wireguard privatekey for the node connection>
wireguard_privatekey_nodes: <XXX>
#<insert your wireguard privatekey for the backend between the supernodes>
wireguard_privatekey_backbone: <XXX>
#<port 80 or 443. If you use 443, the port must be reachable from the internet to generate a lets encrypt certificate! If you insert port 80, some proxy in front must handle the https request>
wireguard_nginx_port: 443