This project's goal is to be simple to create and destroy your own VPN service using WireGuard.
- Terraform >= 1.0.0
- Ansible >= 2.10.5
Run with sudo is necessary because we need permission on localhost to install packages, configure a network interface and start a process.
Select your cloud provider AWS, DigitalOcean, GCP and open the directory
You can change the region or key name in the variable.tf
- Initialize Terraform
terraform init- Plan our modifications
terraform plan- Apply the changes
terraform apply- For Digital Ocean you need to declare your token(do_token) in variable.tf or command line:
sudo terraform plan -var "do_token=value"
sudo terraform apply -var "do_token=value"- For GCP you need to declare your token(project_id) in variable.tf or command line:
sudo terraform plan -var "project_id=value"
sudo terraform apply -var "project_id=value"You supply the key to Terraform using the environment variable GOOGLE_APPLICATION_CREDENTIALS:
export GOOGLE_APPLICATION_CREDENTIALS=path- Test the connection without VPN
curl ipinfo.io/ip- Start VPN
sudo systemctl start wg-quick@wg0- Test the connection with VPN
curl ipinfo.io/ipIf you want a extra client for mobile, you need to change the value of the variable mobile in variable.tf or command line:
sudo terraform plan -var "mobile=true"
sudo terraform apply -var "mobile=true"If variable enabled it will be installed the package qrencode for generate a QRCODE with the configuration for configure in your mobile device.
After the execution it will be genered a QRCODE in stdout terraform, just scan in your mobile device.
Tested with the Android WireGuard Client
- Just run:
sudo terraform destroyAWSDigital OceanGCP- Azure
- OCI
Contributions, issues and feature requests are welcome!
Feel free to check issues.
Work🤣Linux client(Debian, RedHat and Arch base)Terraform to deploy server on AWSMobile client- Mac client
- Add other cloud providers
👤 João Freire
- Twitter: @p0ssuidao