ansible/roles/router/templates/interfaces-aurore

87 lines
2.9 KiB
Text
Raw Permalink Normal View History

# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).
source /etc/network/interfaces.d/*
# The loopback network interface
auto lo
iface lo inet loopback
# VLAN 129: routage
auto ens18
iface ens18 inet static
address 10.129.0.{{ router_hard_ip_suffix }}/16
gateway 10.129.0.1
iface ens18 inet6 static
address 2a09:6840:129::0:{{ router_hard_ip_suffix }}/64
2020-09-28 18:15:03 +02:00
# Now managed by keepalived.
#
# post-up ip route add 2a09:6840:10::/64 via 2a09:6840:129::1:254 dev ens18
# post-up ip route add 2a09:6840:11::/64 via 2a09:6840:129::1:254 dev ens18
2020-09-28 18:15:03 +02:00
# post-up ip route add 2a09:6840:20::/64 via 2a09:6840:129::2:254 dev ens18
# post-up ip route add 2a09:6840:21::/64 via 2a09:6840:129::2:254 dev ens18
2020-09-28 18:15:03 +02:00
# post-up ip route add 2a09:6840:40::/64 via 2a09:6840:129::4:254 dev ens18
# post-up ip route add 2a09:6840:41::/64 via 2a09:6840:129::4:254 dev ens18
2020-09-28 18:15:03 +02:00
# post-up ip route add 2a09:6840:50::/64 via 2a09:6840:129::5:254 dev ens18
# post-up ip route add 2a09:6840:51::/64 via 2a09:6840:129::5:254 dev ens18
# The primary network interface
allow-hotplug ens19
iface ens19 inet static
address 10.128.0.{{ router_hard_ip_suffix }}/16
gateway 10.128.0.254
dns-search adm.auro.re
iface ens19 inet6 static
address 2a09:6840:128::0:{{ router_hard_ip_suffix }}/64
# Ensures internet connectivity when running as keepalived backup.
gateway 2a09:6840:128::0:254
# VlAN 130: switches
auto ens20
iface ens20 inet static
address 10.130.0.{{ router_hard_ip_suffix }}/16
iface ens20 inet6 static
address 2a09:6840:130::0:{{ router_hard_ip_suffix }}/64
# VLAN 111: IPs publiques serveurs
auto ens21
iface ens21 inet static
address 45.66.111.{{ router_hard_ip_suffix }}/24
# Nécessaire pour contacter re2o et bootstrap le firewall.
# Ces directives sont _aussi_ set par aurore-firewall !
up iptables -t nat -A POSTROUTING -s 10.129.0.{{ router_hard_ip_suffix }}/32 -j SNAT --to-source 45.66.111.{{ router_hard_ip_suffix }}
up iptables -t nat -A POSTROUTING -s 10.128.0.0/16 -j SNAT --to-source 45.66.111.{{ router_hard_ip_suffix }}
up iptables -t nat -A POSTROUTING -s 10.130.0.0/16 -j SNAT --to-source 45.66.111.{{ router_hard_ip_suffix }}
iface ens21 inet6 static
address 2a09:6840:111::{{ router_hard_ip_suffix }}/48
# VLAN 110: IP publiques adhérents
auto ens22
iface ens22 inet static
address 45.66.110.{{ router_hard_ip_suffix }}/24
iface ens22 inet6 static
address 2a09:6840:110::{{ router_hard_ip_suffix }}/48
# VLAN 131: onduleurs et PDU
auto ens23
iface ens23 inet static
address 10.131.0.{{ router_hard_ip_suffix }}/16
iface ens23 inet6 static
address 2a09:6840:131::0:{{ router_hard_ip_suffix }}/64
auto ens1
iface ens1 inet6 manual