systemd-wireguard terraform module
This is a systemd-provisioning module for the WireGuard terraform provider. It configures a 'mesh & spoke' WireGuard network from a (non-empty) list of terraform-managed peer servers to be in a fully-connected mesh, and optionally 'spoke' peers that connect to the meshed hub, but not to each other directly; useful for example for administrative access to servers, or for remote access to an internal network.
On the remote peers:
- systemd >= v243
- systemd-networkd
- Linux >= 5.6 /or/ wireguard-dkms
- configured systemd-networkd netdev with the same interface name as provided to this module (e.g. default
wg0)
There is no requirement for wireguard (or wireguard-tools) to be installed on the machine executing terraform.