From: Tom Hughes <tom@compton.nu>
Date: Mon, 14 Sep 2020 16:32:15 +0000 (+0100)
Subject: Add routes to wireguard peers
X-Git-Url: https://git.openstreetmap.org./chef.git/commitdiff_plain/13c8616cfdbe61a644812acf4163a975f24b9401?ds=inline;hp=--cc

Add routes to wireguard peers
---

13c8616cfdbe61a644812acf4163a975f24b9401
diff --git a/cookbooks/networking/templates/default/wireguard.network.erb b/cookbooks/networking/templates/default/wireguard.network.erb
index 636f2867a..b8114382c 100644
--- a/cookbooks/networking/templates/default/wireguard.network.erb
+++ b/cookbooks/networking/templates/default/wireguard.network.erb
@@ -6,3 +6,12 @@ Address=<%= node[:networking][:wireguard][:address] %>/128
 
 [Route]
 Destination=fd43:e709:ea6d:1::/64
+<% node[:networking][:wireguard][:peers].each do |peer| -%>
+<% Array(peer[:allowed_ips]).sort.each do |ip| -%>
+<% unless ip =~ /^fd43:e709:ea6d:1::/ -%>
+
+[Route]
+Destination=<%= ip %>
+<% end -%>
+<% end -%>
+<% end -%>