aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--personal_infra/playbooks/setup_tinc_keys.yaml27
1 files changed, 27 insertions, 0 deletions
diff --git a/personal_infra/playbooks/setup_tinc_keys.yaml b/personal_infra/playbooks/setup_tinc_keys.yaml
new file mode 100644
index 00000000..bdd67116
--- /dev/null
+++ b/personal_infra/playbooks/setup_tinc_keys.yaml
@@ -0,0 +1,27 @@
+---
+- hosts: tinc
+ tasks:
+ - name: create tinc folder
+ file:
+ path: /etc/ansible/tinc/
+ state: directory
+ recurse: yes
+ - name: generate key
+ command: openssl genrsa -out /etc/ansible/tinc/private.pem 2048
+ args:
+ creates: /etc/ansible/tinc/private.pem
+ - name: generate public
+ command: openssl rsa -in /etc/ansible/tinc/private.pem -outform PEM -pubout -out /etc/ansible/tinc/public_{{ network.public_hostname }}.pem
+ args:
+ creates: /etc/ansible/tinc/public_{{ network.public_hostname }}.pem
+ - name: get public
+ fetch:
+ src: "/etc/ansible/tinc/public_{{ network.public_hostname }}.pem"
+ dest: /tmp/
+ flat: yes
+ - name: distribute public
+ copy:
+ src: "/tmp/public_{{ hostvars[item].network.public_hostname }}.pem"
+ dest: "/etc/ansible/tinc/"
+ with_inventory_hostnames:
+ - tinc
generated by cgit v1.2.3 (git 2.46.0) at 2026-02-02 08:51:06 +0000