ifel.nordvpn
NordVPN
This guide helps you set up and configure the NordVPN client.
Requirements
You need an active NordVPN subscription.
Role Variables
| Variable | Type | Options | Default | Description |
|---|---|---|---|---|
| auto_connect | boolean | true, false | false | Should the VPN connect automatically when the device starts? |
| auto_connect_host | string | The host the VPN will connect to on startup. | ||
| cyber_sec | boolean | true, false | false | Turn CyberSec on or off. |
| dns | string | disabled | Set a custom DNS (input one or two DNS servers separated by a space). | |
| firewall | boolean | true, false | false | Turn the firewall on or off. |
| ipv6 | boolean | true, false | false | Enable or disable IPv6 support. |
| kill_switch | boolean | true, false | false | Turn the Kill Switch feature on or off. |
| notifications | boolean | true, false | false | Enable or disable notifications. |
| technology | string | OPENVPN, NORDLYNX | OPENVPN | Choose the connection technology (OpenVPN or NordLynx). |
| protocol | string | UDP, TCP | UDP | Select between UDP and TCP protocols. |
| whitelisted_ports | list | [22] | List of ports that should be open when the VPN is active. | |
| whitelisted_subnets | list | [] | List of allowed subnets; you may want to include your local subnet. | |
| login | boolean | true, false | true | Automatically log into the account. |
| username | string | foo | Your account username. | |
| password | string | bar | Your account password. | |
| connect | boolean | true, false | false | Should the VPN connect automatically once set up? |
| server | string | The specific server to connect to. |
For more details on NordVPN settings, refer to the NordVPN Linux manual page.
Dependencies
There are no dependencies.
Example Playbook
Here’s an example of how to use this role with variables:
- hosts: nordvpn_clients
roles:
- role: ifel.nordvpn
vars:
auto_connect: true
auto_connect_host: "us8830"
firewall: true
kill_switch: true
technology: "NORDLYNX"
username: [email protected]
password: "my password, preferably encrypted, see https://bit.ly/3rOIlz3"
server: "us8830"
whitelisted_ports: [22, 80]
whitelisted_subnets: ["192.168.0.0/16"]
License
MIT