supernode_pkg_vars.yml 4.9 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194
  1. supernode_mesh_mac: 96:48:76:b5:a3:61
  2. supernode_mesh_ipv4: 10.42.0.1
  3. supernode_as: '65403'
  4. supernode_mesh_net_base_ip: 10.42.0.0
  5. supernode_mesh_netmask_ipv4: 255.255.0.0
  6. supernode_bat_macaddress: f2:43:13:c0:d7:06
  7. supernode_mesh_net_cidr: 10.42.0.0/16
  8. supernode_mesh_ipv6: 2a03:2260:50:5::8/64
  9. supernode_mesh_net_ipv6: 2a03:2260:50:5::/64
  10. supernode_local_ip: "{{ansible_default_ipv4.address}}"
  11. supernode_other_nameserver: 10.42.0.23
  12. supernode_other_ntp_server: 10.42.0.23
  13. supernode_mesh_backbones:
  14. - name: node02
  15. comment: Non existant mesh backbone
  16. remote_ip: 192.168.0.43
  17. mesh_ip: 10.42.0.2
  18. address_v6: fd0a:1c06:d97c:e89d::2
  19. supernode_uplinks:
  20. - name: uplink1
  21. comment: Non existant uplink
  22. address: 172.16.0.1
  23. dstaddr: 172.16.0.2
  24. netmask: 255.255.255.252
  25. endpoint: 192.168.0.23
  26. address_v6: fd0a:1c06:d97c:e88d::2/64
  27. adress_v6_pure: fd0a:1c06:d97c:e88d::2
  28. as: '65079'
  29. fastd_instances:
  30. - name: do00
  31. bind: any:10000 interface "eth0" default ipv4
  32. interface: tap00
  33. loglevel: info
  34. mode: tap
  35. method: salsa2012+umac
  36. peer_limit: 125
  37. mtu: 1280
  38. status_socket: /tmp/fastd00.sock
  39. on_up_script: |
  40. ip link set up $INTERFACE
  41. batctl if add $INTERFACE
  42. on_verify_script: |
  43. /etc/fastd/fastd-blacklist.sh $PEER_KEY
  44. - name: do01
  45. bind: any:10001 interface "eth0" default ipv4
  46. interface: tap01
  47. loglevel: info
  48. mode: tap
  49. method: salsa2012+umac
  50. peer_limit: 125
  51. mtu: 1280
  52. status_socket: /tmp/fastd01.sock
  53. on_up_script: |
  54. ip link set up $INTERFACE
  55. batctl if add $INTERFACE
  56. on_verify_script: |
  57. /etc/fastd/fastd-blacklist.sh $PEER_KEY
  58. fastd_instances_secret:
  59. - name: do00
  60. secret: 280088c4263359417e9f2daf1771db820ab79eb4f79e3718719b2a976e8a8b5e
  61. - name: do01
  62. secret: 280088c4263359417e9f2daf1771db820ab79eb4f79e3718719b2a976e8a8b5e
  63. bird_router_id: "{{supernode_mesh_ipv4}}"
  64. bird_templates:
  65. - header: bgp ibgp
  66. content: |
  67. local as 65403;
  68. import all;
  69. export all;
  70. next hop self;
  71. multihop 64;
  72. bird_protocols:
  73. - header: kernel
  74. content: |
  75. device routes;
  76. import all;
  77. export all;
  78. kernel table 42;
  79. - header: device
  80. content: scan time 8;
  81. - header: direct
  82. content: interface "*";
  83. - header: bgp ffrg11 from ibgp
  84. content: |
  85. source address 10.0.6.6;
  86. neighbor 10.0.6.5 as 65079;
  87. default bgp_med 2;
  88. - header: bgp ffrg25 from ibgp
  89. content: |
  90. source address 10.0.6.2;
  91. neighbor 10.0.6.1 as 65079;
  92. default bgp_med 1;
  93. - header: bgp node012 from ibgp
  94. content: |
  95. source address 10.233.8.1;
  96. neighbor 10.233.24.1 as 65403;
  97. default bgp_med 4;
  98. - header: bgp node021 from ibgp
  99. content: |
  100. source address 10.233.8.1;
  101. neighbor 10.233.16.1 as 65403;
  102. default bgp_med 3;
  103. - header: bgp node022 from ibgp
  104. content: |
  105. source address 10.233.8.1;
  106. neighbor 10.233.32.1 as 65403;
  107. default bgp_med 4;
  108. - header: bgp map from ibgp
  109. content: |
  110. source address 10.233.8.1;
  111. neighbor 10.233.0.1 as 65403;
  112. default bgp_med 4;
  113. bird6_router_id: "{{supernode_mesh_ipv4}}"
  114. bird6_templates:
  115. - header: bgp ibgp
  116. content: |
  117. source address 2a03:2260:50:5::8;
  118. local as 65403;
  119. import all;
  120. export all;
  121. next hop self;
  122. direct;
  123. gateway direct;
  124. - header: bgp uplink
  125. content: |
  126. local as 65403;
  127. import all;
  128. export all;
  129. next hop self;
  130. direct;
  131. multihop 64;
  132. bird6_protocols:
  133. - header: static uplink_hostroute
  134. content: |
  135. import all;
  136. export all;
  137. - header: direct
  138. content: interface "*";
  139. - header: kernel
  140. content: |
  141. persist;
  142. device routes;
  143. scan time 20;
  144. import all;
  145. export all;
  146. kernel table 42;
  147. - header: device
  148. content: scan time 10;
  149. - header: bgp ffrg11 from uplink
  150. content: |
  151. neighbor 2a03:2260:50:5b::1 as 65079;
  152. default bgp_med 2;
  153. - header: bgp ffrg25 from uplink
  154. content: |
  155. neighbor 2a03:2260:50:5a::1 as 65079;
  156. default bgp_med 1;
  157. - header: bgp node012 from ibgp
  158. content: |
  159. neighbor 2a03:2260:50:5::24 as 65403;
  160. default bgp_med 4;
  161. - header: bgp node021 from ibgp
  162. content: |
  163. neighbor 2a03:2260:50:5::16 as 65403;
  164. default bgp_med 3;
  165. - header: bgp node022 from ibgp
  166. content: |
  167. neighbor 2a03:2260:50:5::32 as 65403;
  168. default bgp_med 4;
  169. - header: bgp map from ibgp
  170. content: |
  171. neighbor 2a03:2260:50:5::1 as 65403;
  172. default bgp_med 4;
  173. supernode_interfaces:
  174. - name: eth0
  175. auto: true
  176. proto: inet
  177. type: dhcp
  178. usermanage_usersdb:
  179. fritz:
  180. comment: "Fritz Brinkhoffs"
  181. state: "present"
  182. keys:
  183. - "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQCfO2TgNUMcY9K8N9SsAU/LfVtlloO50n6NRxDER8dCi+t1ydalTbNdEj52cIjqvIEn458cCxdCwsNYeWqSVggX7vT7a+DgYZlJcRteHcb0lPYZplPuiZe3AUE9rHH48W4xEopv7J8Wz6hLng6Gb0TQx9HeVybQ5dn6CGyt8sOCKQ== Fritz Brinkhoffs"