Home Explore Help
Register Sign In
FreifunkHochstift
/
ffho-salt-public
2
0
Fork 2
Files Issues 0 Pull Requests 0
Tree: f98571679f
Branches Tags
ffho-salt-pu...
/
zz_EXAMPLE_PILLAR
/
nodes
/
lnx02-pad.sls

lnx02-pad.sls 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. lnx02.pad.in.ffho.net:
    2. 

  2.   sysLocation: Vega
    3. 

  3. 

  4.   roles:
    5. 

  5.     - router
    6. 

  6.     - kvm
    7. 

  7. 

  8.   ifaces:
    9. 

  9.     lo:
    10. 

  10.       prefixes:
    11. 

  11.         - 10.132.255.12/32
    12. 

  12.         - 2a03:2260:2342:ffff::12/128
    13. 

  13. 

  14.     bond0:
    15. 

  15.       bond-slaves: "eth1"
    16. 

  16.       bridge-vids: "100 101 200 201 1013 2000 2004 2006 3002 4002"
    17. 

  17. 

  18.     br0:
    19. 

  19.       bridge-ports: bond0
    20. 

  20.       bridge-vlan-aware: yes
    21. 

  21.       bridge-ports-condone-regex: "^[a-zA-Z0-9]+_(eth[0-9]+|v[0-9]{1,4})$"
    22. 

  22.       bridge-vids: "100 101 200 201 1013 2000 2004 2006 3002 4002"
    23. 

  23. 

  24.     br0.1013:
    25. 

  25.       desc: "L2-Vega"
    26. 

  26.       prefixes:
    27. 

  27.         - <POP L2-Subnet prefix v4>/28
    28. 

  28.         - <POP L2-Subnet prefix v6>/64
    29. 

  29.       ospf:
    30. 

  30.         mode: active
    31. 

  31. 

  32.     br0.4002:
    33. 

  33.       vlan-raw-device: br0
    34. 

  34.       prefixes:
    35. 

  35.         - 80.70.180.52/29
    36. 

  36.         - 2a02:450:0:6::52/64
    37. 

  37.       gateway:
    38. 

  38.         - 80.70.180.49
    39. 

  39.         - 2a02:450:0:6::1
    40. 

  40.       vrf: vrf_external
    41. 

  41. 

  42.     veth_int2ext:
    43. 

  43.       prefixes:
    44. 

  44.         - <vEth transfer prefix v4>/31
    45. 

  45.         - <vEth transfer prefix v6>/126
    46. 

  46. 

  47.     veth_ext2int:
    48. 

  48.       prefixes:
    49. 

  49.         - <vEth transfer prefix v4>/31
    50. 

  50.         - <vEth transfer prefix v6>/126
    51. 

  51.       vrf: vrf_external
    52. 

  52. 

  53.     br-vm:
    54. 

  54.       bridge-ports: none
    55. 

  55.       bridge-ports-condone-regex: "^[a-zA-Z0-9]+_(v[0-9]{1,4}|)eth[0-9])$"
    56. 

  56.       prefixes:
    57. 

  57.         - <VM Gateway prefixes>
    58. 

  58.       vrf: vrf_external
    59. 

  59. 

  60.     fe01_eth0:
    61. 

  61.       auto: False
    62. 

  62.       post-up:
    63. 

  63.         - "ip    route add 80.70.181.61/32 dev br-vm table vrf_external"
    64. 

  64.         - "ip -6 route add 2a02:450:1:6::10/128 dev br-vm table vrf_external"
    65. 

  65. 

  66.     mail_eth0:
    67. 

  67.       auto: False
    68. 

  68.       post-up:
    69. 

  69.         - "ip    route add 80.70.181.59/32 dev br-vm table vrf_external"
    70. 

  70.         - "ip -6 route add 2a02:450:1::10/128 dev br-vm table vrf_external"
    71. 

  71. 

  72.     cr02_eth0:
    73. 

  73.       desc: "cr02 external"
    74. 

  74.       auto: False
    75. 

  75.       post-up:
    76. 

  76.         - "ip    route add 80.70.181.62/32 dev br-vm table vrf_external"
    77. 

  77.         - "ip -6 route add 2a02:450:1:5::10/128 dev br-vm table vrf_external"
    78. 

  78. 

  79.     cr02_eth1:
    80. 

  80.       desc: "cr02 internal trunk"
    81. 

  81.       bridge-vids: "1013 2000 2004 2006 3002"
    82. 

  82. 

  83.   ssh:
    84. 

  84.     root:
    85. 

  85. {% if grains['id'] == 'lnx02.pad.in.ffho.net' %}
    86. 

  86.       privkey: |
    87. 

  87.         -----BEGIN RSA PRIVATE KEY-----
    88. 

  88.         ...
    89. 

  89.         -----END RSA PRIVATE KEY-----
    90. 

  90. {% endif %}
    91. 

  91.       pubkey: ssh-rsa ABCD... root@lnx02.pad.in.ffho.net
    92.