diff options
| author | Trygve Laugstøl <trygvis@inamo.no> | 2020-10-25 19:11:13 +0100 |
|---|---|---|
| committer | Trygve Laugstøl <trygvis@inamo.no> | 2020-10-25 19:11:13 +0100 |
| commit | 59f913cc1efa21bd8df1a395d4d20f0b451965c2 (patch) | |
| tree | 6d5c86e1154d022ca9ce4843726f02879f5cc22b /ansible/experiments/strongswan/roles | |
| parent | 5838f6791c7a7bae297f67c18b240716e608c761 (diff) | |
| download | infra-59f913cc1efa21bd8df1a395d4d20f0b451965c2.tar.gz infra-59f913cc1efa21bd8df1a395d4d20f0b451965c2.tar.bz2 infra-59f913cc1efa21bd8df1a395d4d20f0b451965c2.tar.xz infra-59f913cc1efa21bd8df1a395d4d20f0b451965c2.zip | |
o Removing experiments.
Diffstat (limited to 'ansible/experiments/strongswan/roles')
| -rw-r--r-- | ansible/experiments/strongswan/roles/strongswan-rw/tasks/main.yml | 21 | ||||
| -rw-r--r-- | ansible/experiments/strongswan/roles/strongswan-rw/templates/swanctl.conf | 34 |
2 files changed, 0 insertions, 55 deletions
diff --git a/ansible/experiments/strongswan/roles/strongswan-rw/tasks/main.yml b/ansible/experiments/strongswan/roles/strongswan-rw/tasks/main.yml deleted file mode 100644 index fb09476..0000000 --- a/ansible/experiments/strongswan/roles/strongswan-rw/tasks/main.yml +++ /dev/null @@ -1,21 +0,0 @@ -- name: packages - apt: - name: "{{ item }}" - install_recommends: no - with_items: - - strongswan-swanctl -- name: Install CA certificate - copy: - src=swanctl/CA/ca-cert.der - dest=/etc/swanctl/x509ca/ca-cert.der -- name: Install key - copy: - src=swanctl/{{ inventory_hostname }}/rsa/{{ inventory_hostname }}-key.der - dest=/etc/swanctl/rsa/{{ inventory_hostname }}-key.der -- name: Install certificate - copy: - src=swanctl/{{ inventory_hostname }}/x509/{{ inventory_hostname }}-cert.der - dest=/etc/swanctl/x509/{{ inventory_hostname }}-cert.der -- template: - src: swanctl.conf - dest: /etc/swanctl/conf.d/trygvis.io.conf diff --git a/ansible/experiments/strongswan/roles/strongswan-rw/templates/swanctl.conf b/ansible/experiments/strongswan/roles/strongswan-rw/templates/swanctl.conf deleted file mode 100644 index 90d212b..0000000 --- a/ansible/experiments/strongswan/roles/strongswan-rw/templates/swanctl.conf +++ /dev/null @@ -1,34 +0,0 @@ -connections { - - home { - local_addrs = {{ strongswan_rw[inventory_hostname].local_addrs }} - remote_addrs = {{ strongswan_home_addrs }} - - local { - auth = pubkey - certs = {{ inventory_hostname }}-cert.der - id = {{ inventory_hostname }}.trygvis.io - } - remote { - auth = pubkey - id = {{ strongswan_remote_id }} - } - children { - home { - remote_ts = {{ strongswan_ts }} - -# updown = /usr/local/libexec/ipsec/_updown iptables - esp_proposals = aes128-sha256-x25519 - } - } - version = 2 - proposals = aes128-sha256-x25519 - } -} - -authorities { - strongswan { - cacert = ca-cert.der - crl_uris = http://ip6-winnetou.strongswan.org/strongswan.crl - } -} |