Commit 2fd5046e authored by Hugo Levy-Falk's avatar Hugo Levy-Falk Committed by root

Version définitive des routeurs.

parent 4f6b7ae6
......@@ -11,6 +11,10 @@ all:
irc_server: 193.48.225.244
smtp_server: 193.48.225.249
children:
dns:
hosts:
10.7.0.127:
10.7.0.128:
dhcp:
vars:
lists:
......@@ -56,6 +60,9 @@ all:
primary: false
gateways:
vars:
re2o_address: hydra.rez
keepalived_interface: eno2
keepalived_virtual_router_id: 51
sysctl_config:
- name: net.ipv4.ip_forward
value: 1
......@@ -77,27 +84,25 @@ all:
10.7.0.57:
router_network_address: 10.3.0.57/24
vlan_7_address: 10.7.0.57/16
vlan_2_address: 192.168.2.57/24
vlan_2_address: 192.168.2.3/24
vlan_13_address: 193.48.225.3/24
vlan_20_address: 10.20.254.57/16
vlan_66_address: 10.66.0.57/24
vlan_68_address: 10.68.254.57/16
vlan_69_address: 10.69.3.57/24
keepalived_state: MASTER
keepalived_virtual_router_id: 1
vlan_69_address: 10.69.3.57/20
keepalived_state: BACKUP
keepalived_priority: 100
10.7.0.54:
router_network_address: 10.3.0.54/24
vlan_7_address: 10.7.0.54/16
vlan_2_address: 192.168.2.54/24
vlan_2_address: 192.168.2.2/24
vlan_13_address: 193.48.225.2/24
vlan_20_address: 10.20.254.54/16
vlan_66_address: 10.66.0.54/24
vlan_68_address: 10.68.254.54/16
vlan_69_address: 10.69.3.54/24
keepalived_state: BACKUP
keepalived_virtual_router_id: 2
keepalived_priority: 50
vlan_69_address: 10.69.3.54/20
keepalived_state: MASTER
keepalived_priority: 150
ldap_servers:
hosts:
janus.rez:
......
......@@ -16,6 +16,9 @@
- name: Install python3-iso8601
apt:
name: python3-iso8601
- name: Install python3-click
apt:
name: python3-click
- name: Install firewall
git:
repo: 'https://gitlab.rezometz.org/klafyvel/firewall.git'
......
- name: Install linux headers
apt:
name: linux-headers-amd64
- name: Look for i40e
shell: "modinfo i40e"
register: enabled
ignore_errors: True
- name: Copy driver archive
unarchive:
src: i40e-2.7.29.tar.gz
dest: /tmp/
when: enabled.rc != 0
- name: Compile driver
make:
chdir: /tmp/i40e-2.7.29
when: enabled.rc != 0
- name: Install driver
make:
chdir: /tmp/i40e-2.7.29
target: install
when: enabled.rc != 0
- name: Enable the driver
modprobe:
name: i40e
register: enable
- name: reboot
reboot:
when: enable.changed
......@@ -14,7 +14,17 @@ vrrp_instance VI_ROUT {
state {{ keepalived_state }}
priority {{ keepalived_priority }}
interface bond0.2
interface {{ keepalived_interface }}
track_interface {
bond0.69
bond0.68
bond0.20
bond0.7
bond0.2
bond0.13
eno1
}
virtual_router_id {{ keepalived_virtual_router_id }}
advert_int 2
......@@ -27,7 +37,7 @@ vrrp_instance VI_ROUT {
virtual_ipaddress {
10.7.0.254/24 brd 10.7.0.255 dev eno1 scope global
10.7.0.254/16 brd 10.7.0.255 dev eno1 scope global
10.69.9.254/20 brd 10.69.15.255 dev bond0.69 scope global
10.20.254.254/16 dev bond0.20 scope global
10.68.254.254/16 dev bond0.68 scope global
......@@ -37,6 +47,6 @@ vrrp_instance VI_ROUT {
}
virtual_routes {
src 193.48.225.254 to 0.0.0.0/0 via 192.168.2.254 dev bond0.2
src 192.168.2.1 to 0.0.0.0/0 via 192.168.2.254 dev bond0.2
}
}
......@@ -11,10 +11,8 @@
- name: service_daemon_pass
prompt: "Enter the password for the service user to connect to re2o"
private: yes
tasks:
- include_role:
name: configure_routers_network
- include_role:
name: keepalived
- include_role:
name: firewall
roles:
- configure_routers_network
- keepalived
- install_network_driver
- firewall
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment