Freifunk OpenVPN-Exit
This role installs and configures OpenVPN. It is used to provide an Internet-Exit for Freifunk nodes.
Please note, that neither any dhcp, nor any radvd configuration is provided by this role - it's OpenVPN only. TAP devices are use. Configuring them statically using standard system configuration files is outside the scope of this role.
Note: This role creates an easy_rsa user - but private key material is not included.
Role Variables
openvpn_exit:
identifier: # Instance name - used for logging to /var/log/openvpn_name.log
port # TCP / UDP Port
dev # Tap device name
proto # (tcp-server / udp)
cert # Certificate file name
ca # CA certificate file
Example Playbook
openvpn_exit:
1194_udp:
port: 1194
dev: ovpn-exit
proto: udp
cert: omni.freifunk-koeln.de.crt
ca: ca.crt
443_tcp:
port: 443
dev: ovpn-tcp-exit
proto: tcp-server
cert: omni.freifunk-koeln.de.crt
ca: ca.crt
License
GPLv3