ansible-role-wireguard icon indicating copy to clipboard operation
ansible-role-wireguard copied to clipboard
verified publisher icon githubixx

Added `wireguard_always_listen` to force ListenPort without setting an endpoint

Open alfvar opened this issue 7 months ago • 1 comments

I had a niche use case where I wanted to configure a client/server setup with two machines as the server on a shared virtual ip. I did not want mesh behavior so I did not want to define a wireguard_endpoint, but ListenPort would not propagate into the config of the target machines.

  • Introduce new boolean var wireguard_always_listen (default false)
  • Retain original behavior: only render ListenPort when an endpoint is defined or single-node
  • Allow VIP or client/server setups to explicitly include ListenPort without setting an endpoint

alfvar avatar May 18 '25 15:05 alfvar

should probably be considered a fix for #214

(and I ran into this environment-crippling issue as well after being forced to update from 17.0.0)

lae avatar Oct 23 '25 21:10 lae