Info setup VXLAN over WireGuard tunnels

[Michele Salerno]

Hi,

I wanted to install WireGuard with VXLAN and I look at the guide:

https://openwisp.io/docs/22.05/user/wireguard.html#how-to-setup-vxlan-over-wireguard-tunnels

I need L2 because I use Bird2 with protocol Babel, bfd, ospf for routing between nodes.

Zerotier doesn't seem very stable lately and I have problems with the new version.

In the guide images, I can't find the examples for server (VXLAN tunnel 1) configuration, and I ask you whether this image is correct or not.

I also ask if and how to enable Ipv6 as well. I read this guide:

https://github.com/openwisp/ansible-wireguard-openwisp

# Sets the ipv4.method of VXLAN connection, defaults to "link-local"
    openwisp2_wireguard_vxlan_ipv4_method: disabled
    openwisp2_wireguard_vxlan_ipv6_method: disabled

Is it necessary to set enable or can I not use the variable?

Is this playbook sufficient?

- name: Setup WireGuard
  hosts:
    - WireGuard
  become: "{{ become | default('yes') }}"
  roles:
    - ansible-wireguard-openwisp
  vars:
    openwisp2_wireguard_controller_url: "https://openwisp.nnxx.ninux.org"
    openwisp2_wireguard_vpn_uuid: "8b900423-9b36-4712-b2f4-f31551dd89fb"
    openwisp2_wireguard_vpn_key: "YZesHwqnxBPpbQ7fVdMWQiIDmAA8IsqU"
    openwisp2_wireguard_flask_key: "eyJhbGciOiJIUzI1NiJ9.eyJSb2xlIjoiQWR"

    # SSL certificates
    openwisp2_wireguard_ssl_cert: "/etc/ssl/openwisp/fullchain.pem"
    openwisp2_wireguard_ssl_key: "/etc/ssl/openwisp/key.pem"

Thanks.

Best regards,

Michele Salerno