wip #14 create/rebuild vpn server

src/vpn/README.md

@@ -13,8 +13,17 @@ _*which you may not have a lot of control or say over the running of._
 # Quickstart
 
 ### To re-deploy VPN server/client from scratch
+```
+python3 -m venv venv
+source ./venv/bin/activate
+pip install -r requirements.txt
+ansible-galaxy collection install --force --collections-path ./ --requirements-file requirements.yml
+
+# Run playbook to create/rebuild fresh vpn server
+ansible-playbook -i inventory.ini --ask-vault-pass playbooks/create-rebuild-vpn-server.yml
+```
 
-1. Create Ubuntu server (Ubuntu 20.04 has been tested)
+1. Run playbook to create Ubuntu server (Ubuntu 20.04 has been tested)
 2. Run [Deploy VPN Client pipeline](https://github.com/KarmaComputing/server-bootstrap/actions/workflows/deploy-vpn.yml) to deploy IPsec and Wireguard tunnel
 
 ### To add a new user to VPN:

src/vpn/inventory.ini

@@ -1,2 +1,5 @@
 [vpn_servers]
 changeme ansible_user=changeme
+
+[localhost]
+localhost ansible_connection=local

src/vpn/playbooks/create-rebuild-vpn-server.yml

@@ -0,0 +1,15 @@
+---
+- name: 
+  hosts: localhost
+  ignore_unreachable: true
+
+  tasks:
+    - name: Create/Rebuild vpn-server
+      hetzner.hcloud.server:
+        api_token: "{{ hetzner_hcloud_token }}"
+        name: vpn-server
+        location: eu-central
+        server_type: cx11
+        image: ubuntu-20.04
+        state: rebuild
+

src/vpn/requirements.txt

@@ -1 +1,3 @@
 ansible
+python-dateutil
+requests

src/vpn/requirements.yml

@@ -0,0 +1,6 @@
+---
+collections:
+  # Install Hetzner collection
+  - name: hetzner.hcloud
+    version: ">=3.1.1"
+    source: https://galaxy.ansible.com