add vagrant playground

2025-04-25 13:29:31 +08:00 · 2020-12-07 12:04:23 +01:00 · 2020-12-07 12:04:23 +01:00 · 1b07f68f20
commit 1b07f68f20
parent 5c11196a75
5 changed files with 122 additions and 0 deletions
--- a/vagrant/Corefile
+++ b/vagrant/Corefile
@ -0,0 +1,6 @@
+.:5353 {
+  debug
+  bind 127.0.0.1
+  bind 192.168.100.10
+  wgsd example.com. wg0
+}
--- a/vagrant/README
+++ b/vagrant/README
@ -0,0 +1,11 @@
+Quick start instructions
+
+Clone & build wgsd:
+~# go get github.com/jwhited/wgsd
+
+Start and provision VMs with Vagrant:
+~# cd ~/go/src/github.com/jwhited/wgsd/vagrant
+~# vagrant up
+
+Setup Wireguard Mesh:
+~# ./setup.sh
--- a/vagrant/Vagrantfile
+++ b/vagrant/Vagrantfile
@ -0,0 +1,54 @@
+# -*- mode: ruby -*-
+# vi: set ft=ruby :
+
+Vagrant.configure("2") do |config|
+
+  config.trigger.before :up do |trigger|
+      trigger.run = {inline: "cp -uvf ../../../../../bin/coredns ../../../../../bin/wgsd-client ."}
+  end
+
+  config.vm.box = "ubuntu/focal64"
+  config.vm.box_check_update = false
+
+  config.vm.synced_folder ".", "/vagrant", type: "rsync"
+
+  config.vm.provision "shell", inline: <<-SHELL
+    apt-get -y update
+    apt-get -y install wireguard
+  SHELL
+
+  config.vm.define "registry" do |registry|
+    registry.vm.hostname = "registry"
+    registry.vm.network "private_network", ip: "192.168.33.10"
+    registry.vm.provision "shell", inline: <<-SHELL
+      wg genkey | tee /etc/wireguard/privatekey | wg pubkey | tee /etc/wireguard/publickey
+      cat > /etc/wireguard/wg0.conf << EOF
+[Interface]
+PrivateKey = $(cat /etc/wireguard/privatekey)
+Address = 192.168.100.10/24
+SaveConfig = True
+ListenPort = 51820
+EOF
+      chmod 600 /etc/wireguard/{privatekey,wg0.conf}
+      chmod 644 /etc/wireguard/publickey
+      chmod 711 /etc/wireguard
+      systemctl enable wg-quick@wg0
+      systemctl start wg-quick@wg0
+      cat > /etc/rc.local << EOF
+#!/bin/sh
+/vagrant/coredns -conf /vagrant/Corefile | logger &
+EOF
+      chmod 755 /etc/rc.local
+      sleep 1
+      /etc/rc.local
+    SHELL
+  end
+
+  (1..4).each do |i|
+      config.vm.define "client-#{i}" do |client|
+          client.vm.hostname = "client-#{i}"
+          client.vm.network "private_network", ip: "192.168.33.10#{i}"
+      end
+  end
+
+end
--- a/vagrant/add.sh
+++ b/vagrant/add.sh
@ -0,0 +1,32 @@
+#!/bin/sh
+set -eux
+VM=$1
+ADDR=$2
+
+SERVER_KEY=$(vagrant ssh registry -- cat /etc/wireguard/publickey)
+
+vagrant ssh $VM -- sudo bash -s << EOF
+wg genkey | tee /etc/wireguard/privatekey | wg pubkey | tee /etc/wireguard/publickey
+# linux  config
+cat > /etc/wireguard/wg0.conf << CLIENTEOF
+[Interface]
+PrivateKey = \$(cat /etc/wireguard/privatekey)
+Address = $ADDR/24
+ListenPort = 51820
+[Peer]
+PublicKey = $SERVER_KEY
+Endpoint = 192.168.33.10:51820
+AllowedIPs = 192.168.100.10/32
+CLIENTEOF
+chmod 600 /etc/wireguard/{privatekey,wg0.conf}
+chmod 644 /etc/wireguard/publickey
+chmod 711 /etc/wireguard
+EOF
+
+CLIENT_KEY=$(vagrant ssh $VM -- cat /etc/wireguard/publickey)
+
+vagrant ssh registry -- sudo wg set wg0 peer $CLIENT_KEY allowed-ips $ADDR/32
+
+vagrant ssh $VM -- sudo systemctl enable wg-quick@wg0
+vagrant ssh $VM -- sudo systemctl restart wg-quick@wg0
+vagrant ssh $VM -- ping -c2 192.168.100.10
--- a/vagrant/setup.sh
+++ b/vagrant/setup.sh
@ -0,0 +1,19 @@
+#!/bin/bash
+set -eux
+
+PEER_NR=4
+
+for ((i=1;i<=$PEER_NR;i++));do
+    ./add.sh client-$i 192.168.100.10$i
+done
+
+for ((i=1;i<=$PEER_NR;i++));do
+    vagrant ssh client-$i -- sudo /vagrant/wgsd-client -device wg0 -dns 192.168.100.10:5353 -zone example.com.
+done
+
+for ((i=1;i<=$PEER_NR;i++));do
+    vagrant ssh client-$i -- ping -c2 192.168.100.10
+    for ((j=1;j<=$PEER_NR;j++));do
+        vagrant ssh client-$i -- ping -c2 192.168.100.10$j
+    done
+done