vpn_config_dir: '/etc/wireguard'

wireguard_defaults:
  prefix: 24
  interface: wg0
  dns: 10.0.0.1
  domains:
    - '~vpn.{{ server_domain }}'
    - '~transmission.{{ server_domain }}'
    - '~syncthing.{{ server_domain }}'
    - '~radicale.{{ server_domain }}'
    - '~mpd.{{ server_domain }}'

  public_key_path: '{{ vpn_config_dir }}/keys/public/default/fudiggity.pub'
  private_key_path: '{{ vpn_config_dir }}/keys/private/default/fudiggity.key'

  peers:
    - name: fudiggity
      allowed_ips:
        - 10.0.0.0/24
        - 172.16.238.0/24
        - 172.32.238.0/24
        - 172.64.238.0/24
        - 172.128.238.0/24
      endpoint: '{{ server_domain }}:51902'
      public_key: CeybSMpJiicXmndIuhe89Bay3z3PEdYNyAwIFsacBEo=
      preshared_key_path: '{{ vpn_config_dir }}/keys/private/default/preshared-fudiggity.psk'
      preshared_key_source_path: files/wireguard/{{ ansible_hostname }}/preshared.psk