2020-08-08 17:10:01 +02:00
|
|
|
global_defs {
|
|
|
|
notification_email {
|
|
|
|
monitoring.aurore@lists.crans.org
|
|
|
|
}
|
|
|
|
notification_email_from routeur-aurore{% if 'backup' in inventory_hostname %}-backup{% endif %}@auro.re
|
|
|
|
smtp_server smtp.crans.org
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
vrrp_instance VI_ROUT_aurore_IPv4 {
|
2021-07-04 13:16:46 +02:00
|
|
|
{% if 'backup' in inventory_hostname %}
|
2020-08-08 17:10:01 +02:00
|
|
|
state BACKUP
|
|
|
|
priority 100
|
2021-07-04 13:16:46 +02:00
|
|
|
{% else %}
|
2020-08-08 17:10:01 +02:00
|
|
|
state MASTER
|
|
|
|
priority 150
|
2021-07-04 13:16:46 +02:00
|
|
|
{% endif %}
|
2020-08-08 17:10:01 +02:00
|
|
|
|
|
|
|
|
|
|
|
# Interface used for VRRP communication.
|
|
|
|
interface ens19
|
|
|
|
|
|
|
|
# Shared by MASTER and BACKUP
|
|
|
|
virtual_router_id 40
|
|
|
|
|
|
|
|
# Timeout in seconds before failover kicks in.
|
|
|
|
advert_int 2
|
|
|
|
|
|
|
|
# Used to authenticate VRRP communication between master and backup.
|
|
|
|
authentication {
|
|
|
|
auth_type PASS
|
|
|
|
auth_pass {{ keepalived_password }}
|
|
|
|
}
|
|
|
|
|
|
|
|
smtp_alert
|
|
|
|
|
|
|
|
virtual_ipaddress {
|
2021-07-04 13:16:46 +02:00
|
|
|
# Hello Zayo
|
|
|
|
83.167.52.69/31 dev ens1 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# Routing
|
|
|
|
10.129.0.254/16 brd 10.129.255.255 dev ens18 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# Adm
|
|
|
|
10.128.0.254/16 brd 10.128.255.255 dev ens19 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# Switches
|
|
|
|
10.130.0.254/16 brd 10.130.255.255 dev ens20 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# IPs publiques serveurs
|
|
|
|
45.66.111.254/24 brd 45.66.111.255 dev ens21 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# IPs publiques adhérents
|
|
|
|
45.66.110.254/24 brd 45.66.110.255 dev ens22 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# VLAN 131: Onduleurs et PDUs
|
|
|
|
10.131.0.254/16 brd 10.131.255.255 dev ens23 scope global
|
2021-07-04 13:46:51 +02:00
|
|
|
|
|
|
|
# VLAN 121: Interco Crans
|
2021-07-19 21:07:42 +02:00
|
|
|
185.230.79.254/29 brd 185.230.79.255 dev ens2 scope global
|
2021-07-04 13:16:46 +02:00
|
|
|
}
|
2020-08-08 17:10:01 +02:00
|
|
|
|
|
|
|
virtual_routes {
|
2021-07-04 13:16:46 +02:00
|
|
|
src 10.129.0.254 to 10.129.0.0/16 dev ens18
|
|
|
|
|
|
|
|
# Fleming NAT
|
|
|
|
src 10.129.0.254 to 10.10.0.0/16 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 10.11.0.0/16 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.0/27 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.32/29 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.251 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.0/27 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.32/29 via 10.129.1.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.251 via 10.129.1.254 dev ens18
|
|
|
|
# Pacaterie NAT
|
|
|
|
src 10.129.0.254 to 10.20.0.0/16 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 10.21.0.0/16 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.40/29 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.48/28 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.64/28 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.252 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.40/29 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.48/28 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.64/28 via 10.129.2.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.252 via 10.129.2.254 dev ens18
|
|
|
|
# Rives NAT
|
|
|
|
src 10.129.0.254 to 10.30.0.0/16 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 10.31.0.0/16 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.80/28 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.96/28 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.112/29 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.253 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.80/28 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.96/28 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.112/29 via 10.129.3.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.253 via 10.129.3.254 dev ens18
|
|
|
|
# EDC NAT
|
|
|
|
src 10.129.0.254 to 10.40.0.0/16 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 10.41.0.0/16 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.120/29 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.128/27 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.254 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.120/29 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.128/27 via 10.129.4.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.254 via 10.129.4.254 dev ens18
|
|
|
|
# George Sand NAT
|
|
|
|
src 10.129.0.254 to 10.50.0.0/16 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 10.51.0.0/16 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.160/27 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.192/29 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.108.255 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.160/27 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.192/29 via 10.129.5.254 dev ens18
|
|
|
|
src 10.129.0.254 to 45.66.109.255 via 10.129.5.254 dev ens18
|
2020-08-08 17:10:01 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-07-04 13:45:40 +02:00
|
|
|
vrrp_instance VI_ROUT_{{ apartment_block }}_IPv4_GTW {
|
|
|
|
{% if 'backup' in inventory_hostname %}
|
|
|
|
state MASTER
|
|
|
|
priority 150
|
|
|
|
{% else %}
|
|
|
|
state BACKUP
|
|
|
|
priority 100
|
|
|
|
{% endif %}
|
|
|
|
|
|
|
|
# Interface used for VRRP communication.
|
|
|
|
interface ens19
|
|
|
|
|
|
|
|
# Shared by MASTER and BACKUP
|
|
|
|
virtual_router_id 5{{ apartment_block_id }}
|
|
|
|
|
|
|
|
# Timeout in seconds before failover kicks in.
|
|
|
|
advert_int 2
|
|
|
|
|
|
|
|
# Used to authenticate VRRP communication between master and backup.
|
|
|
|
authentication {
|
|
|
|
auth_type PASS
|
|
|
|
auth_pass 48gbsassybbhaeFjoAjp
|
|
|
|
}
|
|
|
|
|
|
|
|
smtp_alert
|
|
|
|
|
|
|
|
virtual_routes {
|
|
|
|
# Gateway to routeur-aurore by default
|
|
|
|
src 45.66.111.140 to 0.0.0.0/0 via 10.129.0.254 dev ens18
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-08-08 17:10:01 +02:00
|
|
|
vrrp_instance VI_ROUT_aurore_IPv6 {
|
2021-07-04 13:16:46 +02:00
|
|
|
{% if 'backup' in inventory_hostname %}
|
2020-08-08 17:10:01 +02:00
|
|
|
state BACKUP
|
|
|
|
priority 100
|
2021-07-04 13:16:46 +02:00
|
|
|
{% else %}
|
2020-08-08 17:10:01 +02:00
|
|
|
state MASTER
|
|
|
|
priority 150
|
2021-07-04 13:16:46 +02:00
|
|
|
{% endif %}
|
2020-08-08 17:10:01 +02:00
|
|
|
|
|
|
|
|
|
|
|
# Interface used for VRRP communication.
|
|
|
|
interface ens19
|
|
|
|
|
|
|
|
# Shared by MASTER and BACKUP
|
|
|
|
virtual_router_id 60
|
|
|
|
|
|
|
|
# Timeout in seconds before failover kicks in.
|
|
|
|
advert_int 2
|
|
|
|
|
|
|
|
# Used to authenticate VRRP communication between master and backup.
|
|
|
|
authentication {
|
|
|
|
auth_type PASS
|
|
|
|
auth_pass {{ keepalived_password }}
|
|
|
|
}
|
|
|
|
|
|
|
|
smtp_alert
|
|
|
|
|
|
|
|
virtual_ipaddress {
|
2021-07-04 13:16:46 +02:00
|
|
|
# Hello zayo
|
|
|
|
2001:1b48:2:103::d7:2/126 dev ens1 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# Routing
|
|
|
|
2a09:6840:129::254/64 dev ens18 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# Adm
|
|
|
|
2a09:6840:128::254/64 dev ens19 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# Switches
|
|
|
|
2a09:6840:130::254/64 dev ens20 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# IPs publiques serveurs
|
|
|
|
2a09:6840:111::254/64 dev ens21 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# IPs publiques adhérents
|
|
|
|
2a09:6840:110::254/64 dev ens22 scope global
|
2020-08-08 17:10:01 +02:00
|
|
|
|
2021-07-04 13:16:46 +02:00
|
|
|
# VLAN 131: Onduleurs et PDUs
|
|
|
|
2a09:6840:131::254/64 dev ens23 scope global
|
2021-07-04 13:46:51 +02:00
|
|
|
|
|
|
|
# VLAN 121: Interco Crans
|
2021-07-19 11:49:04 +02:00
|
|
|
2a0c:700:28::2/64 dev ens2 scope global
|
2021-07-04 13:16:46 +02:00
|
|
|
}
|
2020-08-08 17:10:01 +02:00
|
|
|
|
|
|
|
virtual_routes {
|
2021-07-04 13:16:46 +02:00
|
|
|
# Routes return for ipv6 connectivity
|
|
|
|
2a09:6840:10::/64 via 2a09:6840:129::1:254 dev ens18
|
|
|
|
2a09:6840:11::/64 via 2a09:6840:129::1:254 dev ens18
|
|
|
|
2a09:6840:20::/64 via 2a09:6840:129::2:254 dev ens18
|
|
|
|
2a09:6840:21::/64 via 2a09:6840:129::2:254 dev ens18
|
|
|
|
2a09:6840:40::/64 via 2a09:6840:129::4:254 dev ens18
|
|
|
|
2a09:6840:41::/64 via 2a09:6840:129::4:254 dev ens18
|
|
|
|
2a09:6840:50::/64 via 2a09:6840:129::5:254 dev ens18
|
|
|
|
2a09:6840:51::/64 via 2a09:6840:129::5:254 dev ens18
|
2020-08-08 17:10:01 +02:00
|
|
|
}
|
|
|
|
}
|
2021-07-04 13:45:40 +02:00
|
|
|
|
|
|
|
vrrp_instance VI_ROUT_{{ apartment_block }}_IPv6_GTW {
|
|
|
|
{% if 'backup' in inventory_hostname %}
|
|
|
|
state MASTER
|
|
|
|
priority 150
|
|
|
|
{% else %}
|
|
|
|
state BACKUP
|
|
|
|
priority 100
|
|
|
|
{% endif %}
|
|
|
|
|
|
|
|
|
|
|
|
# Interface used for VRRP communication.
|
|
|
|
interface ens19
|
|
|
|
|
|
|
|
# Shared by MASTER and BACKUP
|
|
|
|
virtual_router_id 7{{ apartment_block_id }}
|
|
|
|
|
|
|
|
# Timeout in seconds before failover kicks in.
|
|
|
|
advert_int 2
|
|
|
|
|
|
|
|
# Used to authenticate VRRP communication between master and backup.
|
|
|
|
authentication {
|
|
|
|
auth_type PASS
|
|
|
|
auth_pass 48gbsassybbhaeFjoAjp
|
|
|
|
}
|
|
|
|
|
|
|
|
smtp_alert
|
|
|
|
|
|
|
|
virtual_routes {
|
|
|
|
src 2a09:6840:129::240 to ::/0 via 2a09:6840:129::254 dev ens18
|
|
|
|
}
|
|
|
|
}
|