From: Matt Birkholz Date: Sat, 22 Nov 2025 20:37:48 +0000 (-0700) Subject: Punt links to non-existent -wg0.conf files. X-Git-Url: https://birchwood-abbey.net/git?a=commitdiff_plain;h=670b2710f9f173879c55fd6d0ac1e5bb58f073d0;p=Institute.git Punt links to non-existent -wg0.conf files. Treat them as member.yml was treated. --- diff --git a/README.org b/README.org index ce9e221..b3e67ea 100644 --- a/README.org +++ b/README.org @@ -2123,7 +2123,7 @@ service. Core has an interface on this VPN and is expected to forward packets between it and the institute's other private networks. The following tasks install WireGuard™, configure it with -[[=private/front-wg0.conf=][=private/front-wg0.conf=]] (or [[file:private/front-wg0-empty.conf][=private/front-wg0-empty.conf=]] if it does +=private/front-wg0.conf= (or [[file:private/front-wg0-empty.conf][=private/front-wg0-empty.conf=]] if it does not exist), and enable the service. #+CAPTION: [[file:roles_t/front/tasks/main.yml][=roles_t/front/tasks/main.yml=]] @@ -2182,9 +2182,8 @@ not exist), and enable the service. The "empty" WireGuard™ configuration file (below) is used until the ~./inst client~ command adds the first client, and generates an actual -[[=private/front-wg0.conf=][=private/front-wg0.conf=]]. +=private/front-wg0.conf=. -#+NAME: =private/front-wg0-empty.conf= #+CAPTION: [[file:private/front-wg0-empty.conf][=private/front-wg0-empty.conf=]] #+BEGIN_SRC conf :tangle private/front-wg0-empty.conf :tangle-mode u=rw,g=,o= [Interface] @@ -2197,7 +2196,7 @@ PostUp = resolvectl domain %i small.private *** Example =private/front-wg0.conf= -The example [[=private/front-wg0.conf=][=private/front-wg0.conf=]] below recognizes Core by its +The example =private/front-wg0.conf= below recognizes Core by its public key and routes the institute's private networks to it. It also recognizes Dick's notebook and his (replacement) phone, assigning them host numbers 4 and 6 on the VPN. @@ -2205,8 +2204,7 @@ host numbers 4 and 6 on the VPN. This is just an example. The actual file is edited by the ~./inst client~ command and so is not tangled from the following block. -#+NAME: =private/front-wg0.conf= -#+CAPTION: =private/front-wg0.conf= +#+CAPTION: Example =private/front-wg0.conf= #+BEGIN_SRC conf [Interface] Address = 10.177.87.1/24 @@ -5185,7 +5183,7 @@ additional route Gate needs is to the public VPN via Core. The rest (private Ethernet and campus VPN) are directly connected. The following tasks install WireGuard™, configure it with -[[=private/gate-wg0.conf=][=private/gate-wg0.conf=]] (or =private/gate-wg0-empty.conf= if it does +=private/gate-wg0.conf= (or [[file:private/gate-wg0-empty.conf][=private/gate-wg0-empty.conf=]] if it does not exist), and enable the service. #+CAPTION: [[file:roles_t/gate/tasks/main.yml][=roles_t/gate/tasks/main.yml=]] @@ -5244,10 +5242,9 @@ not exist), and enable the service. The "empty" WireGuard™ configuration file (below) is used until the ~./inst client~ command adds the first client, and generates an actual -[[=private/gate-wg0.conf=][=private/gate-wg0.conf=]]. +=private/gate-wg0.conf=. -#+NAME: =private/gate-wg0-empty.conf= -#+CAPTION: [[file:private/gate-wg0.empty.conf][=private/gate-wg0.empty.conf=]] +#+CAPTION: [[file:private/gate-wg0-empty.conf][=private/gate-wg0-empty.conf=]] #+BEGIN_SRC conf :tangle private/gate-wg0-empty.conf :tangle-mode u=rw,g=,o= [Interface] Address = 10.84.139.1/24 @@ -5257,15 +5254,14 @@ PostUp = wg set %i private-key /etc/wireguard/private-key *** Example =private/gate-wg0.conf= -The example [[=private/gate-wg0.conf=][=private/gate-wg0.conf=]] below recognizes a wired IoT +The example =private/gate-wg0.conf= below recognizes a wired IoT appliance, Dick's notebook and his replacement phone, assigning them the host numbers 3, 4 and 6 respectively. This is just an example. The actual file is edited by the ~./inst client~ command and so should not be tangled from the following block. -#+NAME: =private/gate-wg0.conf= -#+CAPTION: =private/gate-wg0.conf= +#+CAPTION: Example =private/gate-wg0.conf= #+BEGIN_SRC conf [Interface] Address = 10.84.139.1/24