2024-04-27 15:18:41 +02:00
|
|
|
---
|
|
|
|
|
- name: Install OpenVPN
|
|
|
|
|
ansible.builtin.apt:
|
|
|
|
|
name: openvpn
|
|
|
|
|
|
|
|
|
|
- name: Deploy OpenVPN configuration
|
|
|
|
|
ansible.builtin.template:
|
|
|
|
|
src: openvpn/client.conf.j2
|
|
|
|
|
dest: /etc/openvpn/client.conf
|
2024-05-10 13:32:56 +02:00
|
|
|
mode: '0644'
|
2024-04-27 15:18:41 +02:00
|
|
|
|
|
|
|
|
- name: Deploy OpenVPN CA cert
|
|
|
|
|
ansible.builtin.copy:
|
|
|
|
|
content: "{{ openvpn_ca }}"
|
|
|
|
|
dest: /etc/openvpn/ca.crt
|
2024-05-10 13:32:56 +02:00
|
|
|
mode: '0644'
|
2024-04-27 15:18:41 +02:00
|
|
|
|
|
|
|
|
- name: Deploy OpenVPN TLS auth
|
|
|
|
|
ansible.builtin.copy:
|
|
|
|
|
content: "{{ openvpn_ta }}"
|
|
|
|
|
dest: /etc/openvpn/ta.key
|
2024-05-10 13:32:56 +02:00
|
|
|
mode: '0600'
|
2024-04-27 15:18:41 +02:00
|
|
|
|
|
|
|
|
- name: Deploy OpenVPN client cert
|
|
|
|
|
ansible.builtin.copy:
|
|
|
|
|
content: "{{ openvpn_cert }}"
|
|
|
|
|
dest: /etc/openvpn/client.crt
|
|
|
|
|
mode: '0644'
|
|
|
|
|
|
|
|
|
|
- name: Deploy OpenVPN client key
|
|
|
|
|
ansible.builtin.copy:
|
|
|
|
|
content: "{{ openvpn_key }}"
|
|
|
|
|
dest: /etc/openvpn/client.key
|
|
|
|
|
mode: '0600'
|
|
|
|
|
|
|
|
|
|
- name: Start OpenVPN
|
|
|
|
|
ansible.builtin.systemd:
|
|
|
|
|
name: "openvpn@client.service"
|
|
|
|
|
state: started
|
|
|
|
|
enabled: true
|
