|
|
b1449f5b1a
|
[keepalived] Use KA IP as gateway on VLAN 129 rather than add buggy gateway (may generate self loops but this is more stable)
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-19 21:31:01 +02:00 |
|
|
|
a0b05c51b3
|
Add static IPv6 link for Crans/Aurore interconnection
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-19 21:21:09 +02:00 |
|
|
|
e030b26475
|
Enable IP forwarding on routed interfaces
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-19 21:07:42 +02:00 |
|
|
|
4ebb4b6ad3
|
Update IP for Crans/Aurore interconnection
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-19 20:55:37 +02:00 |
|
|
|
9002b5f089
|
NAT on ens1 (Zayo), not ens18 (routage)
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 16:35:54 +02:00 |
|
|
|
fe454a8422
|
Again, RELOAD don't restart
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 14:34:47 +02:00 |
|
|
|
24cca4516b
|
Fix Crans interconnction IP
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 14:22:30 +02:00 |
|
|
|
a1ed04cab8
|
RELOAD keepalived, don't restart it
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 14:20:52 +02:00 |
|
|
|
9ff166b1b7
|
[keepalived] Interco Crans
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 13:46:51 +02:00 |
|
|
|
8645cc9c26
|
Add gateway to other routeur-aurore in BACKUP state, but we should do better
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 13:45:40 +02:00 |
|
|
|
fc8e8de428
|
IPv4 routing is now managed by routeur-aurore
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 13:16:46 +02:00 |
|
|
|
a6ebdd0d3e
|
Hello Crans!
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 12:28:41 +02:00 |
|
|
|
300fb02f8b
|
We don't need a gateway under adm for routers
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-04 12:16:03 +02:00 |
|
|
|
1f6bfeee23
|
Fix broadcast address on routeur-aurore
continuous-integration/drone/push Build is failing
|
2021-03-01 20:04:38 +01:00 |
|
|
|
0f55b90de9
|
Remove 10.129.0.1 gateway on routeur-aurore-*
|
2021-03-01 20:04:02 +01:00 |
|
|
|
b13b22da05
|
Add ignored destinations for firewall logs
continuous-integration/drone/push Build is failing
|
2021-03-01 19:39:11 +01:00 |
|
|
|
faf5fc7362
|
fix re2o-service -> re2o_service role name
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
|
2021-02-07 17:39:04 +01:00 |
|
|
|
0e224df41f
|
Install ipset on each router
continuous-integration/drone/pr Build is failing
continuous-integration/drone/push Build is failing
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:39:26 +01:00 |
|
|
|
c527ce16b0
|
Use good output interface for the main router
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:39:25 +01:00 |
|
|
|
a82edc3e24
|
Firewall configuration without MASQUERADE
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:39:25 +01:00 |
|
|
|
bbac76023c
|
Update masquerade configuration for the captive portal
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:39:25 +01:00 |
|
|
|
154cbedec2
|
Deploy firewall config for the captive portal
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:39:25 +01:00 |
|
|
|
a7b073e1cc
|
Add captive portal firewall configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:38:50 +01:00 |
|
|
|
89ebbd423e
|
Use the local firewall repository
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-05 20:38:50 +01:00 |
|
|
|
5fc2d0a3f9
|
Ajout d'accueil dans keepalived
|
2021-02-05 20:38:49 +01:00 |
|
Yohann D'ANELLO
|
26427665f3
|
Fix indentation
|
2020-11-04 20:11:31 +01:00 |
|
Yohann D'ANELLO
|
9505e87113
|
Use true instead of yes
|
2020-11-04 20:00:35 +01:00 |
|
Yohaï-Eliel BERREBY
|
8adf6b8105
|
add ipv6-edge-router role
|
2020-09-28 18:15:03 +02:00 |
|
chirac
|
ba2baa3020
|
Return routes now handled by keepalived
|
2020-09-27 13:55:56 +02:00 |
|
Yohaï-Eliel BERREBY
|
646ebd3ba9
|
router: ansibilize routeur-aurore{,backup}
|
2020-08-08 20:45:38 +02:00 |
|
Yohaï-Eliel BERREBY
|
3a8112bf0d
|
roll out (private) IPv6 on George Sand
|
2020-08-01 17:48:39 +02:00 |
|
Yohaï-Eliel BERREBY
|
361fd54414
|
keepalived: add IPv6 virtual route
|
2020-08-01 16:07:27 +02:00 |
|
Yohaï-Eliel BERREBY
|
56808e4e60
|
wip: begin updating 'router' role for IPv6
pending: update virtual routes
|
2020-08-01 15:46:41 +02:00 |
|
Yohaï-Eliel BERREBY
|
194c19fbf3
|
fix wrong hardcoded email for keepalived monitoring
|
2020-08-01 15:34:49 +02:00 |
|
Yohaï-Eliel BERREBY
|
99070ed5ef
|
radius: step 2 of deployment (WIP)
|
2020-05-21 18:06:37 +02:00 |
|
Yohaï-Eliel BERREBY
|
ba3aec348f
|
keepalived: deploy to fleming w/ proper password
|
2020-05-09 16:07:04 +02:00 |
|
Yohaï-Eliel BERREBY
|
223578eefa
|
keepalived: no ansible_managed
Used to restart keepalived needlessly
|
2020-05-08 16:43:49 +02:00 |
|
Yohaï-Eliel BERREBY
|
e58ee1c4b5
|
keepalived: initial config
|
2020-05-08 16:25:02 +02:00 |
|
