ansible-ffibk/roles/service-fastd-intragate/templates/fastd-intragate.conf.j2

{% set ip4hex = item.0.ipv4_network | ipaddr('net') | ipaddr(magic) | ipaddr('address') | ip4_hex() -%}
{% set mac = '023' + item.1.id|string + ip4hex -%}
#
# {{ ansible_managed }}
#
log level warn;
hide ip addresses yes;
hide mac addresses yes;

method "aes128-ctr+umac";

interface "{{ item.0.id }}igVPN-{{ item.1.mtu }}";

bind {{ ansible_default_ipv4.address | ipaddr('public') }}:11{{ item.1.id }}{{ item.0.site_number }};
bind {{ ansible_default_ipv6.address | ipaddr('public') | ipwrap }}:11{{ item.1.id }}{{ item.0.site_number }};

include "secret.conf";
mtu {{ item.1.mtu }};

peer group "servers" {
    include peers from "peers/gates";
    include peers from "peers/services";
}

on up "
    ip link set $INTERFACE down
    ip link set address {{ mac | hwaddr('linux') }} dev $INTERFACE
    ip link set $INTERFACE up

    batctl -m {{ item.0.id }}BAT if add $INTERFACE
";

on down "
    batctl -m {{ item.0.id }}BAT if del $INTERFACE
";

status socket "/var/run/fastd-{{ item.0.id }}igVPN-{{ item.1.mtu }}.status";
Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`{% set ip4hex = item.0.ipv4_network \| ipaddr('net') \| ipaddr(magic) \| ipaddr('address') \| ip4_hex() -%}`
Roles service-fastd-[intragate\|mesh]: update mac prefixes due to fastd instances change 2017-10-25 19:50:06 +02:00			`{% set mac = '023' + item.1.id\|string + ip4hex -%}`
Add a bunch of new roles - Update Readme - Update ansible.cfg - Add playbook to set up gateways - Add group variables 2017-09-05 12:01:27 +02:00			`#`
			`# {{ ansible_managed }}`
			`#`
			`log level warn;`
			`hide ip addresses yes;`
			`hide mac addresses yes;`

			`method "aes128-ctr+umac";`

Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`interface "{{ item.0.id }}igVPN-{{ item.1.mtu }}";`
Add a bunch of new roles - Update Readme - Update ansible.cfg - Add playbook to set up gateways - Add group variables 2017-09-05 12:01:27 +02:00
Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`bind {{ ansible_default_ipv4.address \| ipaddr('public') }}:11{{ item.1.id }}{{ item.0.site_number }};`
			`bind {{ ansible_default_ipv6.address \| ipaddr('public') \| ipwrap }}:11{{ item.1.id }}{{ item.0.site_number }};`
Add a bunch of new roles - Update Readme - Update ansible.cfg - Add playbook to set up gateways - Add group variables 2017-09-05 12:01:27 +02:00
			`include "secret.conf";`
Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`mtu {{ item.1.mtu }};`
Add a bunch of new roles - Update Readme - Update ansible.cfg - Add playbook to set up gateways - Add group variables 2017-09-05 12:01:27 +02:00
			`peer group "servers" {`
			`include peers from "peers/gates";`
			`include peers from "peers/services";`
			`}`

Restructure network interfaces in order to use ifupdown2 - rewrite interface templates for batman, fastd, ffrl and meshbridge - add package ethtool to role server-basic - use more ipaddr filters and get rid of unneeded variables in dict ffrl_exit_server - change ffrl_public_ipv4_nat variable to ip/prefix format - update readme files 2017-10-03 14:37:39 +02:00			`on up "`
			`ip link set $INTERFACE down`
Role service-fastd-mesh + service-fastd-intragate: fix mac address format 2017-10-03 15:13:00 +02:00			`ip link set address {{ mac \| hwaddr('linux') }} dev $INTERFACE`
Restructure network interfaces in order to use ifupdown2 - rewrite interface templates for batman, fastd, ffrl and meshbridge - add package ethtool to role server-basic - use more ipaddr filters and get rid of unneeded variables in dict ffrl_exit_server - change ffrl_public_ipv4_nat variable to ip/prefix format - update readme files 2017-10-03 14:37:39 +02:00			`ip link set $INTERFACE up`

Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`batctl -m {{ item.0.id }}BAT if add $INTERFACE`
Restructure network interfaces in order to use ifupdown2 - rewrite interface templates for batman, fastd, ffrl and meshbridge - add package ethtool to role server-basic - use more ipaddr filters and get rid of unneeded variables in dict ffrl_exit_server - change ffrl_public_ipv4_nat variable to ip/prefix format - update readme files 2017-10-03 14:37:39 +02:00			`";`

			`on down "`
Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`batctl -m {{ item.0.id }}BAT if del $INTERFACE`
Restructure network interfaces in order to use ifupdown2 - rewrite interface templates for batman, fastd, ffrl and meshbridge - add package ethtool to role server-basic - use more ipaddr filters and get rid of unneeded variables in dict ffrl_exit_server - change ffrl_public_ipv4_nat variable to ip/prefix format - update readme files 2017-10-03 14:37:39 +02:00			`";`

Restructure fastd configuration to define multiple instances easily - introduce mesh subdictionary `fastd` - change fastd instance naming - change fastd network interface naming (identical with fastd instance names) - change mac address prefixes 2017-10-07 00:57:35 +02:00			`status socket "/var/run/fastd-{{ item.0.id }}igVPN-{{ item.1.mtu }}.status";`