dustin/configpolicy
1
1
Fork 0
Code Issues Releases Activity
Files
f14683aaacdc5c3268aef420abfde682e8de3a0e
configpolicy/host_vars/gw0/network.yml
Dustin C. Hatch f8641cb912 dch-gw: Host Pyrocufflink VPN locally 
This commit adjusts the firewall and networking configuration on dc0 to
host the Pyrocufflink remote access IPsec VPN locally instead of
forwarding it to the internal VPN server.
2018-05-20 13:23:20 -05:00

74 lines
1.5 KiB
YAML
Raw Blame History

internet_iface: enp4s0
network:
ignore_interfaces:
- '{{ internet_iface }}'
interfaces:
- ifname: enp1s0
enabled: true
master: bond0
mode: none
- ifname: enp2s0
enabled: true
master: bond0
mode: none
- ifname: enp3s0
enabled: true
master: bond0
mode: none
- ifname: bond0
ignore: false
enabled: true
bond_opts:
mode: 802.3ad
miimon: 100
mode: none
- ifname: vlan1
enabled: true
vlan_id: 1
physdev: bond0
mode: manual
addr: 172.31.0.1
prefix: 27
addr6: fd99:8cd7:6528::1
- ifname: vlan100
enabled: true
vlan_id: 100
physdev: bond0
mode: manual
addr: 172.24.100.1
prefix: 24
- ifname: vlan101
enabled: true
vlan_id: 101
physdev: bond0
mode: manual
addr: 172.31.1.1
prefix: 24
- ifname: vlan30
enabled: true
vlan_id: 30
physdev: bond0
mode: manual
addr: 172.30.0.1
prefix: 26
addr6: fd99:8cd7:6528:fe1e::1
dhcpcd_send_hostname: false
dhcpcd_ntp_servers: false
dhcpcd_noipv4: true
dhcpcd_noipv6rs: true
dhcpcd_interfaces:
- name: '{{ internet_iface }}'
description: Internet
config:
- ipv4
- static domain_name_servers=172.30.0.4
- static domain_name=pyrocufflink.blue
- noipv4ll
- ipv6rs
- ia_pd 1/::/56
{{ dch_networks.blue.router_iface }}/{{ dch_networks.blue.sla_id }}
{{ dch_networks.red.router_iface }}/{{ dch_networks.red.sla_id }}
{{ dch_networks.jazz.router_iface }}/{{ dch_networks.jazz.sla_id }}
Reference in New Issue View Git Blame Copy Permalink