jcarr
/
wit-network-config
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
253 Commits 1 Branch 0 Tags 268 KiB
Commit Graph

122 Commits

Author SHA1 Message Date
toby 3f2238a090 adding swanctl draft config. not yet used but wanna eventually switch to it 2018-10-28 20:45:20 +01:00
toby 056ca4c6ea fixing bug in udev rule writing for mgmt/gw interfaces 2018-10-26 20:45:18 +02:00
toby 1dc2ca3525 fixing bug in udev rule writing for mgmt/gw interfaces 2018-10-26 20:24:47 +02:00
toby 87ee7e115e first draft for bastion support, needs to be tested 2018-10-26 19:50:55 +02:00
toby 31abf06342 setting leftsubnet to only be the local loopback instead of a wide range. this will avoid blackholing traffic for edges and potentially other nodes 2018-10-23 23:28:29 +02:00
toby 82146158cd allowing the gre if local asn to be dynamically assigned as well 2018-10-23 16:59:12 +02:00
toby 0eceabfe1d implementing some ad-hoc patches I did yesterday to get it going 2018-10-20 17:51:53 +02:00
toby 3124cda0f2 up1 should not run dad attempts 2018-10-19 23:37:46 +02:00
toby f2777bdbee adding broadcom nic firmware as dependency 2018-10-19 23:18:44 +02:00
toby 1003c71e11 have ibgp interface also added to the neighbors obviously... 2018-10-19 23:08:31 +02:00
toby aa0bef898b adding ibgp interface to frrconfig and fixing syntax in up1-interfaces config 2018-10-19 23:01:19 +02:00
toby ea89e74311 removing also test echo output 2018-10-19 21:44:46 +02:00
toby d81aa58f7c doh, actually removing the test code 2018-10-19 21:16:16 +02:00
toby ea70e243fe more work on edge.... adding support for dynamic ipsec subnets and some more minor patches 2018-10-19 19:57:07 +02:00
toby 587bba4290 more work on edge / dynamic frr config... .making progress but still ways to go,... just taking a backup... 2018-10-19 17:03:43 +02:00
toby 7e1d7993fe more work on edge / dynamic frr config... .making progress but still ways to go,... just taking a backup... 2018-10-19 16:56:11 +02:00
toby cfdc1cd3a9 more work ... .still ways to go,... just taking a backup... 2018-10-18 22:12:43 +02:00
toby 0e9142c15e first major commit for edge boxes support, not nearly done yet 2018-10-16 22:44:57 +02:00
toby d30e523aed disabling strongswan service by default. I turn it back on in ansible when certs are in place 2018-10-10 18:59:23 +02:00
toby db5f5107fa nicer output formatting 2018-10-09 18:46:35 +00:00
toby e69f60957c .... me being anal... 2018-10-09 18:09:38 +00:00
toby 347291d1a9 re-factor of interface config compile process 2018-10-09 18:06:28 +00:00
toby 4a89aa2c93 re-arranging before interface config refactor 2018-10-09 16:25:45 +00:00
toby 1f58cd3918 cleaning up leading space vs tab bs 2018-10-09 16:23:52 +00:00
toby 1b891db635 renaming WIT customers prefix-list to be more consistent, in preparation for edge support 2018-10-08 18:20:48 +02:00
toby 460ee34f03 adding support for ibgp interfaces and feth/up/ibgp support for up to 4 nics 2018-10-08 11:33:18 +02:00
toby 836822aebe minor but critical typo in udev rule logic 2018-10-04 19:21:55 +02:00
toby 22edbf98f3 adding mac udev rules through DNS lookup configs 2018-10-04 18:12:55 +02:00
toby 1cff4bac8e keeping the loopback ip as main tld of the host for simplicity of own lookup 2018-10-01 14:59:33 +02:00
toby 1c50cecdb5 adding direct ssh access on default for bastion, and migrating to admin domain instead of 3 different zones 2018-10-01 10:39:17 +02:00
toby d87f7c1720 configuring etc/network/interfaces from postinst instead of installing a static file 2018-09-25 23:24:42 +02:00
toby 7f51717f21 adding strongswan-pki to dependency list 2018-09-23 22:07:50 +02:00
toby 37c69ab507 adding ipv6 tunnel to strongswan and matching firewall rules 2018-09-17 21:28:02 +02:00
toby 4a69025703 removing legacy dhcp stuff and starting to rely on DNS for loopback v4/v6 and asn 2018-09-12 20:01:52 +02:00
toby 4a24a5a513 switching back mgmt1 to ipv6 auto/slaac since ipmi is that way too regardless and finally found jinja2 filter 2018-09-12 12:27:37 +02:00
toby dc6a02d0d4 fixing ipv6 mgmt firewall rules (again) and setting mgmt1 interface to be dhcp as well (not just auto) 2018-09-10 21:03:57 +02:00
toby 4d3026d7c4 fixing a damn typo... 2018-09-10 18:21:04 +02:00
toby 028e2d455d fixing bug in IPv6 LOOPBACK, pulling that from DNS as well, ASN is still generated for now 2018-09-09 23:11:54 +02:00
toby 769ef9695f fixing the preinst script to rely on DNS as well 2018-09-09 13:32:32 +02:00
toby 8a53109d81 fixing typo ... 2018-09-09 13:30:43 +02:00
toby 37125104c3 pulling loopback IP from DNS instead of relaying on dhcp and configfile, moving net-interfaces to each own files in interfaces.d, cleaning up the postinst scritp a bit for easier read 2018-09-09 12:58:45 +02:00
toby 2f1a2d497a removing qemu-system-common dependency again to test if dpkg-displace is all working... 2018-08-25 12:25:54 +02:00
toby 75dadb6d92 moving to automatic changelog generation and trying to fix collision with qemu-system-common 2018-08-25 00:20:56 +02:00
toby 4d967cc329 displacing default qemu if scripts to allow qemu install 2018-08-24 23:25:41 +02:00
toby 52658cebe2 adding some more verbose output to drone for testing 2018-08-24 20:47:13 +02:00
toby e1d13857b2 adding qemu deplendencies just to not break stuff later when installing it 2018-08-24 20:20:50 +02:00
root 1bacfa20dc upping the version so it gets pushed to the repo 2018-08-19 08:35:20 +00:00
root f2507c74d0 drone ... starting over ... 2018-08-16 21:37:27 +00:00
root 9e95ef6478 removing ipsec.secrets from diversion since it breaks apparmor permissions and strongswan 2018-08-14 10:04:59 +00:00
root f6303f817b adding support for frr 5.0 2018-08-12 16:34:19 +00:00
root 8508708aaf re-enabling frr dependencies and upping version for push to repo 2018-08-09 13:32:24 +00:00
root fbb3ac8d6f minor loopback validy check fix 2018-08-09 12:49:26 +00:00
root 3592ea524b cleanup... 2018-08-09 12:42:42 +00:00
root 13fbc9d572 I may come close to the full support finally 2018-08-09 10:18:19 +00:00
root 24e5d81bff renaming dhcp option loopback to tier-id 2018-08-08 22:38:14 +00:00
toby 933901f933 rename package to wit-network-config 2018-08-08 23:05:05 +02:00
root e8a00a6adf adding first steps for dhcp-loopback support and vcs info in control 2018-08-08 20:59:37 +00:00
root b8368a446f just a coupe more comments and adding vteps to auto-detect 2018-08-06 18:45:35 +00:00
root 35e370d4d7 addign dhcpcd5 conflict dependency and fixing rc.local to exit 0 2018-08-02 21:54:14 +00:00
root 248bdb7f80 refacotring to some extend now that we switched to dhcpcd and turned off networkd entirely. 2018-08-02 21:35:37 +00:00
root 5280d685c6 if we're not dealing with a datanode or hypervisor write the TIER_ID down into the environment so it's available next time, also cleanup interfaces and do not restart strongswan just like we don't restart frr to avoid service interruption after an upgrade 2018-08-02 15:45:52 +00:00
root 653d175c30 package rename to -config 2018-07-31 17:31:30 +00:00
root 1bc3a07b9f missing dhcp-client, and seems like I finally got the networkd/lldp issue fixed 2018-07-30 21:03:35 +00:00
root a88beae0e2 cleanup ... 2018-07-28 20:52:38 +00:00
root 27ece3ddea getting very very close 2018-07-28 18:47:08 +00:00
root 14c4cd626b final tweaks 2018-07-27 20:51:10 +00:00
root 906bcb2a7c adding ipsec config as well 2018-07-27 20:34:21 +00:00
root ce140aaa2f almost working ... files are installed correctly, variables not replacing correctly yet 2018-07-27 18:57:47 +00:00
root 214ea903fc getting close.... only frr.conf is not behaving 2018-07-27 18:28:18 +00:00
root c467b30914 building and major patches still 2018-07-27 10:39:47 +00:00
root a65021ece5 minor bugs 2018-07-26 10:17:17 +00:00
root bb377472b0 first commit 2018-07-26 08:57:41 +00:00