Wireguard VPNΒΆ
Metric |
Target |
|---|---|
RPO |
n/a (stateless service) |
RTO |
1 hour |
Wireguard is provisioned using Ansible and runs on the Hetzner
server called kiste1.
Wireguard can be re-provisioned using this playbook, i.e.
$ source ./.venv/bin/activate
$ # Get the Vault password from Bitwarden (note that this is not hashi-vault!)
$ ansible-playbook playbooks/wireguard-server.yaml --check --diff --ask-vault-pass