Compare commits
3 Commits
e9fbf78741
...
eb6b599b5c
Author | SHA1 | Date |
---|---|---|
Jesper Hess | eb6b599b5c | |
Jesper Hess | 21042962d4 | |
Jesper Hess | 8de7d1df57 |
|
@ -1,6 +1,7 @@
|
||||||
[defaults]
|
[defaults]
|
||||||
inventory = inventory
|
inventory = inventory
|
||||||
interpreter_python = auto_silent
|
interpreter_python = auto_silent
|
||||||
|
vault_password_file = ~/vault_password
|
||||||
|
|
||||||
[privilege_escalation]
|
[privilege_escalation]
|
||||||
become = True
|
become = True
|
||||||
|
|
|
@ -0,0 +1,26 @@
|
||||||
|
---
|
||||||
|
router_id: "185.38.175.78"
|
||||||
|
router_v4_ip: "185.38.175.78"
|
||||||
|
router_v6_ip: "2a01:4262:1ab:20::78"
|
||||||
|
|
||||||
|
bgp_peers:
|
||||||
|
- name: "labitat_v4"
|
||||||
|
template: "transit_v4"
|
||||||
|
peer_asn: "205235"
|
||||||
|
neighbor_ip: "185.38.175.65"
|
||||||
|
|
||||||
|
- name: "labitat_v6"
|
||||||
|
template: "transit_v6"
|
||||||
|
peer_asn: "205235"
|
||||||
|
neighbor_ip: "2a01:4262:1ab:20::1"
|
||||||
|
|
||||||
|
- name: "hessnet_home"
|
||||||
|
template: "peer_hessnet"
|
||||||
|
peer_asn: "64512"
|
||||||
|
neighbor_ip: "2001:678:15c:a00::1"
|
||||||
|
filters:
|
||||||
|
export: "{ peer_export_dfz_and_default(); }"
|
||||||
|
import: "myroutes_import_export"
|
||||||
|
|
||||||
|
announce_from_here: true
|
||||||
|
configure_static_multihop_routes: false
|
|
@ -6,7 +6,7 @@ router_v6_ip: "2001:19f0:5001:256b:5400:02ff:feb0:cd41"
|
||||||
bgp_peers:
|
bgp_peers:
|
||||||
- name: "vultr_v4"
|
- name: "vultr_v4"
|
||||||
template: "peer_vultr_v4"
|
template: "peer_vultr_v4"
|
||||||
asn: "64515"
|
peer_asn: "64515"
|
||||||
neighbor_ip: "169.254.169.254"
|
neighbor_ip: "169.254.169.254"
|
||||||
password: !vault |
|
password: !vault |
|
||||||
$ANSIBLE_VAULT;1.1;AES256
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
@ -18,7 +18,7 @@ bgp_peers:
|
||||||
|
|
||||||
- name: "vultr_v6"
|
- name: "vultr_v6"
|
||||||
template: "peer_vultr_v6"
|
template: "peer_vultr_v6"
|
||||||
asn: "64515"
|
peer_asn: "64515"
|
||||||
neighbor_ip: "2001:19f0:ffff::1"
|
neighbor_ip: "2001:19f0:ffff::1"
|
||||||
password: !vault |
|
password: !vault |
|
||||||
$ANSIBLE_VAULT;1.1;AES256
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
@ -30,7 +30,7 @@ bgp_peers:
|
||||||
|
|
||||||
- name: "home_router"
|
- name: "home_router"
|
||||||
template: "peer_hessnet"
|
template: "peer_hessnet"
|
||||||
asn: "209616"
|
peer_asn: "209616"
|
||||||
neighbor_ip: "172.16.12.19"
|
neighbor_ip: "172.16.12.19"
|
||||||
filters:
|
filters:
|
||||||
export: "{ peer_export_default_only(); }"
|
export: "{ peer_export_default_only(); }"
|
||||||
|
|
10
inventory
10
inventory
|
@ -2,9 +2,15 @@
|
||||||
archvm1.hosts.v6.hessnet.dk
|
archvm1.hosts.v6.hessnet.dk
|
||||||
archvm2.hosts.v6.hessnet.dk
|
archvm2.hosts.v6.hessnet.dk
|
||||||
|
|
||||||
[routers]
|
[routers_vultr]
|
||||||
# frb1.cph.dk.routers.v6.hessnet.dk
|
|
||||||
vul1.ams.nl.routers.v6.hessnet.dk
|
vul1.ams.nl.routers.v6.hessnet.dk
|
||||||
|
|
||||||
|
[routers_copenhagen]
|
||||||
|
frb1.cph.dk.routers.v6.hessnet.dk
|
||||||
|
|
||||||
|
[routers:children]
|
||||||
|
routers_vultr
|
||||||
|
routers_copenhagen
|
||||||
|
|
||||||
[as209616_webservers]
|
[as209616_webservers]
|
||||||
archvm1.hosts.v6.hessnet.dk
|
archvm1.hosts.v6.hessnet.dk
|
|
@ -172,15 +172,14 @@ protocol direct {
|
||||||
protocol kernel {
|
protocol kernel {
|
||||||
ipv4 {
|
ipv4 {
|
||||||
import filter myroutes_import_export;
|
import filter myroutes_import_export;
|
||||||
export none; #filter kernel_export;
|
export filter kernel_export;
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
||||||
protocol kernel kernel6 {
|
protocol kernel kernel6 {
|
||||||
scan time 5;
|
|
||||||
ipv6 {
|
ipv6 {
|
||||||
import none;
|
import filter myroutes_import_export;
|
||||||
export none; #filter kernel_export;
|
export filter kernel_export;
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -235,7 +234,7 @@ template bgp peer_hessnet {
|
||||||
|
|
||||||
{% for peer in bgp_peers %}
|
{% for peer in bgp_peers %}
|
||||||
protocol bgp {{ peer.name }} from {{ peer.template }} {
|
protocol bgp {{ peer.name }} from {{ peer.template }} {
|
||||||
neighbor {{peer.neighbor_ip}} as {{peer.asn}};
|
neighbor {{peer.neighbor_ip}} as {{peer.peer_asn}};
|
||||||
{% if peer.password is defined %}
|
{% if peer.password is defined %}
|
||||||
password "{{ peer.password }}";
|
password "{{ peer.password }}";
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
|
|
@ -14,7 +14,6 @@
|
||||||
- "website"
|
- "website"
|
||||||
- "cockpit"
|
- "cockpit"
|
||||||
|
|
||||||
|
|
||||||
- name: "Configure Bird 2.0 Routers"
|
- name: "Configure Bird 2.0 Routers"
|
||||||
hosts: "routers"
|
hosts: "routers"
|
||||||
become: "yes"
|
become: "yes"
|
||||||
|
|
Loading…
Reference in New Issue