ansible/group_vars/vpn/bird.yml

61 lines
1.1 KiB
YAML
Raw Normal View History

2023-11-07 04:11:28 +01:00
---
2023-11-07 06:07:48 +01:00
bird__tables:
- wg
2023-11-07 04:11:28 +01:00
bird__kernel:
kernel:
learn: true
import: accept
export: accept
vrf:
2023-11-07 06:07:48 +01:00
learn: true
import:
sources:
- "{{ iproute2__custom_protos.wireguard }}"
2023-11-07 04:11:28 +01:00
export: accept
table: wg
2023-11-07 06:07:48 +01:00
kernel: "{{ iproute2__custom_tables.wireguard }}"
2023-11-07 04:11:28 +01:00
bird__ospf:
limits:
import: 4000
export: 4000
table: wg
import: accept
export:
2023-11-07 06:07:48 +01:00
sources:
- "{{ iproute2__custom_protos.wireguard }}"
2023-11-07 04:11:28 +01:00
areas:
1:
broadcast:
- vpn0
bird__bgp:
infra1:
local:
address: "{{ bird__bgp_addr.vpn }}"
as: "{{ bird__as.aurore }}"
neighbor:
address:
- 2a09:6840:213::1:1
- 10.213.1.1
as: "{{ bird__as.aurore }}"
table: wg
import: accept
export: reject
next_hop_self: true
infra2:
local:
address: "{{ bird__bgp_addr.vpn }}"
as: "{{ bird__as.aurore }}"
neighbor:
address:
- 2a09:6840:213::1:2
- 10.213.1.2
as: "{{ bird__as.aurore }}"
table: wg
import: accept
export: reject
next_hop_self: true
...