603 B
603 B
Registering a new internal machine :
- Register .pub.infra.hatecomputers.club A record -> public ipv4
- Register .int.infra.hatecomputers.club A record -> internal ipv4 in 10.155.0.0/16 subnet
- Put it on the internal VPN. i.e. add .pub... in the wireguard-mesh after allowing ssh to root and everything
- Run the wireguard-mesh playbook
- Update the inventory record in wireguard-mesh to .int...
- Now run the deploy-common playbook to allow ssh only internally, debugging as necessary if needed ; it should just work :))
- Add your new roles!