Move sysctl net forwarding to separate role

author: Dmitry Ilvokhin <d@ilvokhin.com> 2024-05-26 19:26:04 +0100
committer: Dmitry Ilvokhin <d@ilvokhin.com> 2024-05-26 19:35:21 +0100
commit: a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031 (patch)
tree: c72cfefb0a7d22668359628afce6a3222947fc48 /roles/wgnet
parent: 5ec7c4b1b31bb3cea080005b0245d09e05048e11 (diff)
download: infra-a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031.tar.gz
infra-a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031.tar.bz2
infra-a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031.zip
2 files changed, 1 insertions, 10 deletions
diff --git a/roles/wgnet/meta/main.yml b/roles/wgnet/meta/main.yml
index 45ed5d7..aede5ad 100644
--- a/roles/wgnet/meta/main.yml
+++ b/roles/wgnet/meta/main.yml
@@ -1,2 +1,3 @@
 dependencies:
+  - role: netfwd
   - role: wireguard
diff --git a/roles/wgnet/tasks/main.yml b/roles/wgnet/tasks/main.yml
index c776a84..9156fde 100644
--- a/roles/wgnet/tasks/main.yml
+++ b/roles/wgnet/tasks/main.yml
@@ -1,13 +1,3 @@
-- name: Configure IPv4 and IPv6 packet forwarding
-  ansible.builtin.sysctl:
-    name: '{{ item }}'
-    value: '1'
-    sysctl_set: true
-  loop:
-    - net.ipv4.ip_forward
-    - net.ipv4.conf.all.forwarding
-    - net.ipv6.conf.all.forwarding
-
 - name: Configure WireGuard for wgnet
   ansible.builtin.template:
     src: templates/wg0.conf.j2
author	Dmitry Ilvokhin <d@ilvokhin.com>	2024-05-26 19:26:04 +0100
committer	Dmitry Ilvokhin <d@ilvokhin.com>	2024-05-26 19:35:21 +0100
commit	a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031 (patch)
tree	c72cfefb0a7d22668359628afce6a3222947fc48 /roles/wgnet
parent	5ec7c4b1b31bb3cea080005b0245d09e05048e11 (diff)
download	infra-a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031.tar.gz infra-a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031.tar.bz2 infra-a8e1f9e775c575a4ac1d0d2aa946dbf0e765e031.zip