---
# interface/innernet parent network name
network_name: "fsfe"
# 10.200.0.1 to 10.200.255.254
# 65,536 usable IP addresses
network_cidr: "10.200.0.0/16"
# wiregaurd listening port
network_listen_port: "51820"
cidrs:
  ## humans
  ## 10.200.16.1 to 10.200.31.254
  ## 4,096 usable IP addresses
  humans:
    name: humans
    parent: fsfe
    cidr: 10.200.16.0/20

  ### humans > admins
  ### 10.200.16.1 to 10.200.19.254
  ### 1,024 usable IP addresses
  admins:
    name: admins
    parent: humans
    cidr: 10.200.16.0/22

  ### humans > others
  ### 10.200.20.1 to 10.200.23.254
  ### 1,024 usable IP addresses
  others:
    name: others
    parent: humans
    cidr: 10.200.20.0/22

  ## machines
  ## 10.200.64.1 to 10.200.127.254
  ## with 16,384 usable IP addresses
  machines:
    name: machines
    parent: fsfe
    cidr: 10.200.64.0/18

# key of the CIDR you want to use for the client role,
# so automatically configured peers (typically VMs)
machine_cidr: machines

# Peers that are configured manually, typically humans. The created invitation
# file will be stored on the controller machines and has to be imported on the
# person's computer manually. 'name' must consist of alphanumeric characters and
# dashes, no dots or similar!
manual_peers:
  linus:
    name: linus
    cidr: admins
    admin: true
  max.mehl:
    name: max-mehl
    cidr: admins
    admin: true
  albert:
    name: albert
    cidr: admins
    admin: true

# humans > admins, e.g.
# - { "cidr": "admins", "name": "linus", "admin": "true" }
# humans > others, e.g.
# - { "cidr": "others", "name": "mk", "admin": "false" }
# - { "cidr": "others", "name": "fi", "admin": "false" }
# - { "cidr": "others", "name": "fani", "admin": "false" }
# machines, e.g.
# - { "cidr": "machines", "name": "cont1-plutex", "admin": "false" }