Commit graph

254 commits

Author SHA1 Message Date
Tobias Hachmer
79017f02d6 Use package module where possible instead of apt 2017-10-11 17:53:20 +02:00
Tobias Hachmer
4ce00a6ac3 Add role network-routing
- move static routes from role service-rclocal to scripts run by systemd
unit
- mv routing specific sysctl settings
2017-10-11 06:52:24 +02:00
Tobias Hachmer
f18e53e4e7 Role service-fastd: use own systemd unit fastd@.service
- original uses %I which does not escaping, so dashes will be replaced
by slashes
- use %i instead of %I
2017-10-08 11:35:22 +02:00
Tobias Hachmer
c56dc3504c Role service-fastd-mesh: fix typo in handler 2017-10-08 10:51:04 +02:00
Tobias Hachmer
37ef87bea9 Readme.md: add control machine requirements 2017-10-08 09:55:30 +02:00
Tobias Hachmer
534b0d045c Role network-fastd: update README.md 2017-10-08 09:44:42 +02:00
Tobias Hachmer
e1e723809f Role network-batman: update batman-ifaces due to fastd instance change
- update README.md
2017-10-08 09:36:38 +02:00
Tobias Hachmer
4732338cee Roles service-fastd-[mesh|intragate]: update role dependencies 2017-10-07 01:08:48 +02:00
Tobias Hachmer
53d30c8ded Restructure fastd configuration to define multiple instances easily
- introduce mesh subdictionary `fastd`
 - change fastd instance naming
 - change fastd network interface naming (identical with fastd instance
names)
 - change mac address prefixes
2017-10-07 00:57:35 +02:00
Tobias Hachmer
63ca114c95 Migrate nested dictionary meshes into a list of dictionaries
- migrate dictionary `ipv6` into two simple lists
 - migrate dictionary `forward_zones` into a list
2017-10-06 22:58:00 +02:00
Julian Labus
2bbd39009c Update Readme.md 2017-10-06 14:04:29 +02:00
Tobias Hachmer
829d931ff9 Role service-fastd-mesh: add systemd timer for fastd peer limit update script 2017-10-06 11:47:09 +02:00
Tobias Hachmer
7e181923b3 Role service-fastd: ensure fastd service is masked 2017-10-06 10:49:41 +02:00
Tobias Hachmer
a2fa5ff223 Role service-fastd-mesh: move peer limit to a separate file which isn't managed by ansible 2017-10-06 10:38:26 +02:00
Tobias Hachmer
900eacafb2 Fix wrong IP subnet calculation in roles service-radvd + service-rclocal 2017-10-06 09:56:14 +02:00
Tobias Hachmer
ea08c856ac Update some ipaddr filters 2017-10-06 00:15:31 +02:00
Tobias Hachmer
c4ed75ed36 Roles service-bird[|-ffrl|-icvpn]: rework handlers 2017-10-04 19:46:16 +02:00
Tobias Hachmer
94da0613a4 FFRL Internet Exit: move IPv4 NAT address to a single dummy interface 2017-10-04 13:51:03 +02:00
Tobias Hachmer
cc43741a91 Role network-iptables-gateway: rename var internet_exit_mtu_ipv[4|6] to internet_exit_tcp_mss_ipv[4|6] 2017-10-04 12:55:29 +02:00
Tobias Hachmer
b46be69a26 Role service-rclocal: fix wrong interface 2017-10-04 01:02:15 +02:00
Tobias Hachmer
98e1b60e00 Roles service-fastd-mesh + service-fastd-intragate: rename fastd socket 2017-10-04 00:51:18 +02:00
Tobias Hachmer
817f86abb7 Role service-bird-icvpn: rename systemd unit+timer icvpn-update to icvpn-tinc-bgp-update 2017-10-04 00:25:29 +02:00
Tobias Hachmer
b0f0d63383 Role service-bind-slave: add systemd unit + timer to update icvpn bind config 2017-10-04 00:20:50 +02:00
Tobias Hachmer
31e0b6da67 Role service-bind-slave: fix file permissions 2017-10-04 00:05:53 +02:00
Tobias Hachmer
1f7ab3c620 Role git-repos: change branch of backend-scripts repo to drop-photon 2017-10-03 23:32:00 +02:00
Tobias Hachmer
224a61a481 Role service-bird + service-bird-icvpn: add systemd unit + timer to update roa+peers+tinc hosts 2017-10-03 23:31:15 +02:00
Tobias Hachmer
0fa92eef1c Role service-fastd-mesh: add systemd unit + timer to update mesh peers 2017-10-03 23:30:02 +02:00
Tobias Hachmer
04d12c1fb5 Update Readme.md 2017-10-03 21:36:14 +02:00
Tobias Hachmer
07a0b25a09 Role service-radvd: make more parameters configurable 2017-10-03 21:24:36 +02:00
Tobias Hachmer
a1705da9a0 Role service-radvd: optimize ipaddr filters 2017-10-03 21:18:39 +02:00
Tobias Hachmer
ef6bedfee5 Update loop keys 2017-10-03 20:52:37 +02:00
Tobias Hachmer
937238d26e Role service-radvd: update handlers 2017-10-03 20:43:23 +02:00
Tobias Hachmer
7506fae8a5 Role service-tinc: use a task instead of a handler for systemd stuff 2017-10-03 20:40:48 +02:00
Tobias Hachmer
3ee405bdf2 Restructure service-fastd roles
- migrate role git-fastd-peers
- add role service-fastd
- add repo clone for ffbin peers (currently hardcoded)
- add role dependency to role service-fastd-mesh +
service-fastd-intragate
- add systemd handlers
2017-10-03 20:25:17 +02:00
Tobias Hachmer
01af6903e6 Role service-fastd-mesh + service-fastd-intragate: fix mac address format 2017-10-03 15:13:00 +02:00
Tobias Hachmer
a112f6305e Role service-dhcpd: fix disabled notify 2017-10-03 14:44:38 +02:00
Tobias Hachmer
2f32bd6c1e Restructure network interfaces in order to use ifupdown2
- rewrite interface templates for batman, fastd, ffrl and meshbridge
- add package ethtool to role server-basic
- use more ipaddr filters and get rid of unneeded variables in dict
ffrl_exit_server
- change ffrl_public_ipv4_nat variable to ip/prefix format
- update readme files
2017-10-03 14:37:39 +02:00
Tobias Hachmer
821834c4b8 Add role service-bind-slave 2017-10-02 23:34:53 +02:00
Tobias Hachmer
5e38e4f6fb Role service-bird-icvpn: use a task and not a handler to set file attrs 2017-10-02 23:08:53 +02:00
Tobias Hachmer
2e0e474ba7 Role kmod-batman: load kernel modules 2017-10-02 11:21:01 +02:00
Tobias Hachmer
b285305fe1 Add role network-iptables-gateway
- move netfilter specific sysctl settings
2017-10-02 11:18:16 +02:00
Tobias Hachmer
4596743a56 Add readme for role prerequisites 2017-10-02 11:15:58 +02:00
Tobias Hachmer
3a9edaa666 Add version to git modules in roles:
- git-fastd-peers
- git-repos
- service-tinc
2017-10-02 11:15:58 +02:00
Tobias Hachmer
41d6fb0ff1 Add role system-sysctl-gateway 2017-10-02 11:15:58 +02:00
Tobias Hachmer
846f385a21 Add role service-tinc 2017-10-02 11:15:58 +02:00
Tobias Hachmer
ab45622570 Role server-basic: add package bridge-utils 2017-09-29 20:34:38 +02:00
Tobias Hachmer
36e5e5c670 Update Readme.md
- update passwordstore lookup for fastd secrets
- add explanation about sensible informations
2017-09-28 20:14:58 +02:00
Tobias Hachmer
c87cb61a6b Update readme of roles service-fastd-mesh + service-fastd-intragate 2017-09-28 20:09:18 +02:00
Tobias Hachmer
0edd928ec8 Role service-bird-ffrl: correct ipaddr filters 2017-09-18 13:22:55 +02:00
Tobias Hachmer
ce1a690db2 Add role service-bird-ffrl to playbook gateways 2017-09-18 13:22:55 +02:00