--- - name: Check VPN Routing Status - Client-Side Diagnostics hosts: production gather_facts: no become: no tasks: - name: Instructions for client-side DNS check debug: msg: - "=== CLIENT-SIDE DNS CHECK ===" - "Bitte f?hre diese Befehle auf deinem Client-System aus (nicht auf dem Server):" - "" - "1. Pr?fe aktive DNS-Server:" - " Linux/Mac: cat /etc/resolv.conf" - " Windows: Get-DnsClientServerAddress | Select-Object InterfaceAlias, ServerAddresses" - "" - "2. Teste DNS-Aufl?sung:" - " dig +short grafana.michaelschiemer.de" - " Oder: nslookup grafana.michaelschiemer.de" - "" - "3. Teste DNS-Aufl?sung ?ber VPN-DNS:" - " dig +short grafana.michaelschiemer.de @10.8.0.1" - " Sollte zur?ckgeben: 10.8.0.1" - "" - "4. Pr?fe WireGuard Config:" - " ?ffne deine WireGuard-Config und pr?fe:" - " [Interface]" - " DNS = 10.8.0.1" - "" - "Teile mir die Ergebnisse mit, dann kann ich dir helfen, das zu fixen!" - name: Check server-side WireGuard configuration shell: | echo "=== Server-Side WireGuard Config ===" sudo cat /etc/wireguard/wg0.conf | grep -A 5 "\[Interface\]" | head -10 args: executable: /bin/bash register: wg_server_config ignore_errors: yes failed_when: false - name: Display server-side WireGuard config debug: msg: "{{ wg_server_config.stdout_lines }}" - name: Check server-side DNS resolution shell: | echo "=== Server-Side DNS Tests ===" echo "1. Grafana via VPN DNS (10.8.0.1):" dig +short grafana.michaelschiemer.de @10.8.0.1 2>&1 || echo "Failed" echo "" echo "2. Grafana via public DNS (8.8.8.8):" dig +short grafana.michaelschiemer.de @8.8.8.8 2>&1 || echo "Failed" args: executable: /bin/bash register: server_dns ignore_errors: yes failed_when: false - name: Display server-side DNS tests debug: msg: "{{ server_dns.stdout_lines }}"