ansible-ffibk/roles/network-routing
2019-05-22 09:18:40 +02:00
..
handlers Handlers: move all handlers into their roles, again 2018-03-01 06:34:55 +01:00
meta Introduce p2p vpn link between all ffmwu servers via WireGuard for routing purpose. 2019-03-19 15:23:12 +01:00
tasks Remove dashes from group_vars names 2019-05-22 09:18:40 +02:00
templates Use link-local IPv6 address for BGP Peering 2019-03-25 20:22:55 +01:00
vars Role network-routing: rename 'sysctl_settings_routing_gateway' to 'sysctl_settings_routing_forwarding'; enable ip forwarding also for monitoring hosts 2019-03-22 21:52:08 +01:00
README.md Roles: improve multidomain support 2019-03-02 18:12:56 +01:00

Ansible role network-routing

Diese Ansible role konfiguriert System Einstellung bzgl. IP Routing.

  • konfiguriert statische Routen (systemd Unit)
    • Mesh Routen für die Routing Tabelle mwu
    • Blackhole Routes für die Routing Tabellen internet + main
  • konfiguriert IP rules (systemd Unit)
  • konfiguriert sysctl Parameter

Benötigte Variablen

  • Dictionary meshes
meshes:
  - id: xx
...
    site_name:
    ipv4_network:
    ipv6_ula:
    ipv6_public:
  • Listen sysctl_settings_routing_basic und sysctl_settings_routing_gateway (Rollen-Variablen)
sysctl_settings_routing_(basic|gateway):
  - name:       # sysctl-Parameter
    value:      # zu setzender Wert
...
  • Host Variable ffrl_public_ipv4_nat # Format ip-adresse/prefix

  • Host Dictionary ffrl_exit_server

  • Host Variable magic

  • Host Variable server_type