diff --git a/tasks/cluster_k3s.yml b/tasks/cluster_k3s.yml
index 6f7bac8..03ec670 100644
--- a/tasks/cluster_k3s.yml
+++ b/tasks/cluster_k3s.yml
@@ -2,8 +2,9 @@
 - name: Install Wireguard
   ansible.builtin.include_role:
     name: wireguard
-#  when:
+  when:
 #    - kubernetes_cni == "wireguard"
+    - "'Vpn' not in group_names"
 
 - name: Import Rancher key
   ansible.builtin.rpm_key:
@@ -126,6 +127,16 @@
   when:
     - kubernetes_server|bool
 
+- name: /etc/kubernetes directory
+  ansible.builtin.file:
+    path: "/etc/kubernetes"
+    state: directory
+    owner: root
+    group: root
+    mode: 0755
+  when:
+    - kubernetes_master|bool
+
 - name: Configure Pod Security
   ansible.builtin.copy:
     src: "etc/kubernetes/psa.yaml"
@@ -199,21 +210,21 @@
   - name: Deploy Network Policies
     ansible.builtin.template:
       src: "{{ item }}.j2"
-      dest: "{{ item }}"
+      dest: "/{{ item }}"
       owner: root
       group: root
       mode: 0600
     with_items:
-      - "var/lib/rancher/k3s/server/manifests/np-00-intra-namespace.yaml.j2"
-      - "var/lib/rancher/k3s/server/manifests/np-01-default-network-dns-policy.yaml.j2"
-      - "var/lib/rancher/k3s/server/manifests/np-03-metrics-server-traefik.yaml.j2"
+      - "var/lib/rancher/k3s/server/manifests/np-00-intra-namespace.yaml"
+      - "var/lib/rancher/k3s/server/manifests/np-01-default-network-dns-policy.yaml"
+      - "var/lib/rancher/k3s/server/manifests/np-03-metrics-server-traefik.yaml"
     when:
       - kubernetes_master|bool
 
   - name: Deploy systemd service
     ansible.builtin.template:
       src: "{{ item }}.j2"
-      dest: "{{ item }}"
+      dest: "/{{ item }}"
       owner: root
       group: root
       mode: 0600