phfroidmont/self-hosting
1
0
Fork 0
mirror of https://github.com/phfroidmont/self-hosting.git synced 2026-03-28 06:26:08 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

relay1: migrate to wstunnel + WireGuard subnet relay via Headscale

Browse source 
Replace the OpenVPN/OCServ path with a cleaner wstunnel-terminated WireGuard relay on :443, advertise/approve corporate subnet routes through Headscale, and add wsl DNS/route plumbing for tailnet access.
This commit is contained in:
Paul-Henri Froidmont 2026-03-25 14:54:08 +01:00
parent 572c6e3e54
commit a6571d5f39
Signed by: phfroidmont
GPG key ID: BE948AFD7E7873BE
5 changed files with 87 additions and 76 deletions
Download patch file Download diff file Expand all files Collapse all files

10
terraform/dns.tf
View file

@ -68,6 +68,14 @@ resource "hetznerdns_record" "hel1_a" {
ttl = 600
}
resource "hetznerdns_record" "ws_a" {
zone_id = data.hetznerdns_zone.banditlair_zone.id
name = "ws"
value = hcloud_server.relay1.ipv4_address
type = "A"
ttl = 600
}
resource "hetznerdns_record" "grafana_a" {
zone_id = data.hetznerdns_zone.banditlair_zone.id
name = "grafana"
@ -383,7 +391,7 @@ resource "hetznerdns_record" "froidmont_a" {
}
resource "hetznerdns_record" "rl_a" {
zone_id = data.hetznerdns_zone.froidmont_zone.id
zone_id = data.hetznerdns_zone.banditlair_zone.id
name = "rl"
value = hcloud_server.relay1.ipv4_address
type = "A"