---
- type: "io.trygvis.rules.machine.Machine"
  data:
    &acme-1 name: "acme-1"
    fqdn: "acme-1.machine.acme.com"
- type: "io.trygvis.rules.machine.Machine"
  data:
    &acme-2 name: "acme-2"
    fqdn: "acme-2.machine.acme.com"
- type: "io.trygvis.rules.machine.Machine"
  data:
    &acme-3 name: "acme-3"
    fqdn: "acme-3.machine.acme.com"
- type: "io.trygvis.rules.machine.Machine"
  data:
    &ws-1 name: "ws-1"
    fqdn: null
- type: "io.trygvis.rules.machine.Machine"
  data:
    &ws-2 name: "ws-2"
    fqdn: null
- type: "io.trygvis.rules.dns.DnsEntry"
  data:
    fqdn: "acme-1.vpn.acme.com"
    type: "A"
- type: "io.trygvis.rules.dns.DnsEntry"
  data:
    fqdn: "acme-2.vpn.acme.com"
    type: "A"
- type: "io.trygvis.rules.dns.DnsEntry"
  data:
    fqdn: "acme-3.vpn.acme.com"
    type: "A"
- type: "io.trygvis.rules.dns.DnsEntry"
  data:
    fqdn: "ws-1.vpn.acme.com"
    type: "A"
- type: "io.trygvis.rules.dns.DnsEntry"
  data:
    fqdn: "ws-2.vpn.acme.com"
    type: "A"
- type: "io.trygvis.rules.dba.DbaMachineRole"
  data:
    &1 machine: "acme-1"
    roles:
    - "ci-app"
- type: "io.trygvis.rules.dba.DbaMachineRole"
  data:
    &2 machine: "acme-2"
    roles:
    - "ops"
    - "ci-db"
- type: "io.trygvis.rules.dba.DbaMachineRole"
  data:
    &3 machine: "acme-3"
    roles:
    - "production-app"
    - "production-db"
- type: "io.trygvis.rules.wireguard.WgNet"
  data:
    &vpn0 name: "vpn0"
    domain: "vpn.acme.com"
    linkCidr: "192.168.10.0/29"
    networkCidr: "10.55.0.0/16"
    networkBits: 24
- type: "io.trygvis.rules.wireguard.WgIpPool"
  data:
    &1 net: *vpn0
    role: "link"
    cidr:
      value: "192.168.10.0/29"
- type: "io.trygvis.rules.wireguard.WgIpPool"
  data:
    &2 net: *vpn0
    role: "networks"
    cidr:
      value: "10.55.0.0/16"
- type: "io.trygvis.rules.wireguard.WgHost"
  data:
    &3 machine: *ws-1
    net: *vpn0
    publicName: null
    ip: "192.168.10.6"
    networkCidr: "10.55.252.0/24"
- type: "io.trygvis.rules.wireguard.WgHost"
  data:
    &4 machine: *ws-2
    net: *vpn0
    publicName: null
    ip: "192.168.10.7"
    networkCidr: "10.55.251.0/24"
- type: "io.trygvis.rules.wireguard.WgHost"
  data:
    &5 machine: *acme-1
    net: *vpn0
    publicName: "acme-1.machine.acme.com"
    ip: "192.168.10.3"
    networkCidr: "10.55.255.0/24"
- type: "io.trygvis.rules.wireguard.WgHost"
  data:
    &6 machine: *acme-2
    net: *vpn0
    publicName: "acme-2.machine.acme.com"
    ip: "192.168.10.4"
    networkCidr: "10.55.254.0/24"
- type: "io.trygvis.rules.wireguard.WgHost"
  data:
    &7 machine: *acme-3
    net: *vpn0
    publicName: "acme-3.machine.acme.com"
    ip: "192.168.10.5"
    networkCidr: "10.55.253.0/24"
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &8 host: *3
    to: *7
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &9 host: *3
    to: *5
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &10 host: *3
    to: *6
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &11 host: *4
    to: *7
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &12 host: *4
    to: *5
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &13 host: *4
    to: *6
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &14 host: *7
    to: *5
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &15 host: *7
    to: *6
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &16 host: *5
    to: *7
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &17 host: *5
    to: *6
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &18 host: *6
    to: *7
- type: "io.trygvis.rules.wireguard.WgConnection"
  data:
    &19 host: *6
    to: *5