sbrl
/
cluster-deployment
1
0
Fork 0
Code Issues Pull Requests Releases Activity

wesher: add comments

This commit is contained in:
Starbeamrainbowlabs 2022-03-21 03:18:43 +00:00
parent a500bf9a2d
commit cdb959206c
Signed by: sbrl
GPG Key ID: 1BE5172E637709C2
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/steps-config/50-wesher-wireguard.sh
View File

@ -11,4 +11,14 @@ queue_postinstall_step "10-wesher.sh";
queue_firewall_rule allow 7946 comment wesher-gossip;
queue_firewall_rule allow 51820/udp comment wesher-wireguard;
# Allow all traffic from the VPN; we don't actually know what ports Nomad will use
queue_firewall_rule allow in on wgoverlay;
# See the Keepass entry in our database for copy-paste commands to join nodes.
# Basically:
# sudo wesher --cluster-key CLUSTER_KEY_HERE --join 172.16.230.100 --overlay-net 172.31.250.0/16 --log-level info
# sudo systemctl enable --now wesher.service
# sudo systemctl status wesher.service
#
# This is all automated now thanks to this script andit's postinstall cousin.