Finish deploy openvpn-server.

roles/role_deploy_openvpn-server/tasks/main.yml

@@ -52,37 +52,29 @@
     registry: "{{ private_registry_domain }}"
   become: true
 
-#- name: Create openvpn-server container
-#  containers.podman.podman_container:
-#    name: openvpn-server
-#    image: "{{ private_registry_domain }}/openvpn-server:075fc0f303"
-#    command:
-#      - "--listening-port"
-#      - "3478"
-#      - "--verbose"
-#      - "--fingerprint"
-#      - "--use-auth-secret"
-#      - "--static-auth-secret"
-#      - "{{ coturn_secret }}"
-#      - "--realm"
-#      - "{{ DOMAIN }}"
-#      - "--total-quota"
-#      - "100"
-#      - "--bps-capacity"
-#      - "0"
-#      - "--stale-nonce"
-#      - "--no-multicast-peers"
-#    state: present
-#    network:
-#      - host
-#    generate_systemd:
-#      path: /etc/systemd/system
-#  become: true
-#
-#- name: start/enable container service
-#  ansible.builtin.systemd:
-#    daemon-reload: true
-#    name: container-openvpn-server
-#    state: started
-#    enabled: true
-#  become: true
+- name: Create openvpn-server container
+  containers.podman.podman_container:
+    name: openvpn-server
+    image: "{{ private_registry_domain }}/openvpn-server:2d2f032441"
+    state: present
+    cap_add:
+      - NET_ADMIN
+    device: /dev/net/tun
+    network:
+      - host
+    expose: 1194/udp
+    #ports:
+    #  - 1194:1194/udp
+    volume:
+      - /mnt/volumes/openvpn-server_conf:/etc/openvpn/server:Z
+    generate_systemd:
+      path: /etc/systemd/system
+  become: true
+
+- name: start/enable container service
+  ansible.builtin.systemd:
+    daemon-reload: true
+    name: container-openvpn-server
+    state: started
+    enabled: true
+  become: true