make wireguard keys an order-only target

[wg] update requirements check
[wg] reload systemd after config change
2026-04-29 17:51:21 +02:00 · 2026-03-10 23:42:51 +01:00 · 2026-03-10 23:14:46 +01:00 · 2026-03-10 22:48:49 +01:00 · 2026-03-10 22:45:05 +01:00 · 2026-03-10 22:42:16 +01:00
6 changed files with 21 additions and 7 deletions
--- a/2
+++ b/2
@@ -13,7 +13,9 @@ include wg.mk
 .PHONY: check
 check: ## Check you have all dependencies
 	@command -v graph-easy >/dev/null || { echo "Install perl-graph-easy" && exit 1 ;}
+	@command -v ansible >/dev/null || { echo "Install ansible" && exit 1 ;}
 	@command -v recsel >/dev/null || { echo "Install recutils" && exit 1 ;}
+	@command -v wg >/dev/null || { echo "Install wireguard" && exit 1 ;}
 	@command -v lowdown >/dev/null || { echo "Install lowdown" && exit 1 ;}
 	@echo "All dependencies installed"

--- a/ansible/hosts.yaml
+++ b/ansible/hosts.yaml
@@ -7,7 +7,7 @@ all:

 wireguard:
  hosts:
-    192.168.0.93:
+    192.168.10.93:
 arch:
  hosts:
    10.0.0.1:
--- a/ansible/playbooks/wireguard.yml
+++ b/ansible/playbooks/wireguard.yml
@@ -1,7 +1,7 @@
 ---
 - name: Install Wireguard on Server
  hosts: wireguard
-  become: true
+  user: root 

  tasks:
    - name: Install wireguard tools and dig
@@ -14,6 +14,7 @@
      ansible.builtin.copy:
        src: wireguard/wg0.conf
        dest: /etc/wireguard/wg0.conf
+      notify: Reload systemd daemon

    - name: Get server public IP
      ansible.builtin.command: dig +short myip.opendns.com @resolver1.opendns.com
@@ -30,3 +31,8 @@
        name: wg-quick@wg0
        enabled: yes

+  handlers:
+    - name: Reload systemd daemon
+      ansible.builtin.command:
+        cmd: systemctl daemon-reload
+
--- a/wg.mk
+++ b/wg.mk
@@ -45,8 +45,8 @@ ansible/playbooks/files/wireguard/wg0.conf: wireguard/wg_peers.txt | ansible/pla
 wg-create: wireguard/dmz.conf ## Set up wireguard keys (do this before installing)

 .PHONY: wg-install
-wg-install: /etc/wireguard/dmz.conf ## Install wireguard keys (use sudo)
-/etc/wireguard/dmz.conf: wireguard/dmz.conf | /bin/wg
+wg-install:| /etc/wireguard/dmz.conf ## Install wireguard keys (use sudo)
+/etc/wireguard/dmz.conf:| wireguard/dmz.conf /bin/wg
 	cp $< $@

 .PHONY: wg-setup
--- a/wgkeys.rec
+++ b/wgkeys.rec
@@ -10,3 +10,10 @@ id: 2
 name: Malin Freeborn
 pubkey: loNnXRalD0ZyOLadSWm31rqOuRfEbgtX9O4/z7eSIho=

+id: 3
+name: coja
+pubkey: snfw8r1hIAtTABGd7K9xIZ9RH62qMEK4fRqVm4EbniQ=
+
+id: 4
+name: netstat
+pubkey: Z8bk25hHo6oadOX7KtoLUDXGW9r+thMiR320aiGmQAQ=
--- a/xecut/nimbus/dmz.conf
+++ b/xecut/nimbus/dmz.conf
@@ -1,12 +1,11 @@
 # Client configuration for wireguard to nimbus at xecut.

 [Interface]
-Address = 10.0.0.2/32
+Address = 10.0.0.{{id}}/32
 PrivateKey = PRIVATE_KEY
-DNS = 9.9.9.9

 [Peer]
 PublicKey = GH+qA1Au9BraGhNt7Aqp8tdhGVfH8ENnY3VzKhe69XQ=
 Endpoint = space.xecut.me:51900
-AllowedIPs = 10.0.0.{{id}}/24
+AllowedIPs = 10.0.0.1/24
Author	SHA1	Message	Date
Malin Freeborn	e4f7c8bd02	make wireguard keys an order-only target	2026-04-29 17:51:21 +02:00
Malin Freeborn	3ab9170c8f	[wg] update requirements check	2026-03-10 23:42:51 +01:00
Malin Freeborn	875304f58b	[wg] reload systemd after config change	2026-03-10 23:14:46 +01:00
netstat	5bc955d5ef	add wireguard key for netstat	2026-03-10 22:48:49 +01:00
Malin Freeborn	49f91ac87f	[wg] remove dns	2026-03-10 22:45:05 +01:00
Malin Freeborn	3494008084	[wg] switch which wg ip incremented	2026-03-10 22:42:16 +01:00
coja	7497629b6d	[Wireguard] user root	2026-03-10 22:24:39 +01:00
coja	a830ad508c	add wireguard key for coja	2026-03-10 22:24:39 +01:00
Malin Freeborn	4db6fa5078	fix nimbus ip address	2026-03-10 22:22:42 +01:00