2017-10-07 00:57:35 +02:00
|
|
|
{% set ip4hex = item.0.ipv4_network | ipaddr('net') | ipaddr(magic) | ipaddr('address') | ip4_hex() -%}
|
2017-10-03 14:37:39 +02:00
|
|
|
{% set mac = '0212' + ip4hex -%}
|
2017-09-05 12:01:27 +02:00
|
|
|
#
|
|
|
|
# {{ ansible_managed }}
|
|
|
|
#
|
|
|
|
log level warn;
|
|
|
|
hide ip addresses yes;
|
|
|
|
hide mac addresses yes;
|
|
|
|
|
|
|
|
method "aes128-ctr+umac";
|
|
|
|
|
2017-10-07 00:57:35 +02:00
|
|
|
interface "{{ item.0.id }}igVPN-{{ item.1.mtu }}";
|
2017-09-05 12:01:27 +02:00
|
|
|
|
2017-10-07 00:57:35 +02:00
|
|
|
bind {{ ansible_default_ipv4.address | ipaddr('public') }}:11{{ item.1.id }}{{ item.0.site_number }};
|
|
|
|
bind {{ ansible_default_ipv6.address | ipaddr('public') | ipwrap }}:11{{ item.1.id }}{{ item.0.site_number }};
|
2017-09-05 12:01:27 +02:00
|
|
|
|
|
|
|
include "secret.conf";
|
2017-10-07 00:57:35 +02:00
|
|
|
mtu {{ item.1.mtu }};
|
2017-09-05 12:01:27 +02:00
|
|
|
|
|
|
|
peer group "servers" {
|
|
|
|
include peers from "peers/gates";
|
|
|
|
include peers from "peers/services";
|
|
|
|
}
|
|
|
|
|
2017-10-03 14:37:39 +02:00
|
|
|
on up "
|
|
|
|
ip link set $INTERFACE down
|
2017-10-03 15:13:00 +02:00
|
|
|
ip link set address {{ mac | hwaddr('linux') }} dev $INTERFACE
|
2017-10-03 14:37:39 +02:00
|
|
|
ip link set $INTERFACE up
|
|
|
|
|
2017-10-07 00:57:35 +02:00
|
|
|
batctl -m {{ item.0.id }}BAT if add $INTERFACE
|
2017-10-03 14:37:39 +02:00
|
|
|
";
|
|
|
|
|
|
|
|
on down "
|
2017-10-07 00:57:35 +02:00
|
|
|
batctl -m {{ item.0.id }}BAT if del $INTERFACE
|
2017-10-03 14:37:39 +02:00
|
|
|
";
|
|
|
|
|
2017-10-07 00:57:35 +02:00
|
|
|
status socket "/var/run/fastd-{{ item.0.id }}igVPN-{{ item.1.mtu }}.status";
|