ansible/roles/router/templates/interfaces-aurore
Yohann D'ANELLO 9002b5f089
NAT on ens1 (Zayo), not ens18 (routage)
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
2021-07-04 16:35:54 +02:00

74 lines
2.2 KiB
Text

# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).
source /etc/network/interfaces.d/*
# The loopback network interface
auto lo
iface lo inet loopback
# VLAN 129: routage
auto ens18
iface ens18 inet static
address 10.129.0.{{ router_hard_ip_suffix }}/16
iface ens18 inet6 static
address 2a09:6840:129::0:{{ router_hard_ip_suffix }}/64
# The primary network interface
allow-hotplug ens19
iface ens19 inet static
address 10.128.0.{{ router_hard_ip_suffix }}/16
dns-search adm.auro.re
iface ens19 inet6 static
address 2a09:6840:128::0:{{ router_hard_ip_suffix }}/64
# VlAN 130: switches
auto ens20
iface ens20 inet static
address 10.130.0.{{ router_hard_ip_suffix }}/16
iface ens20 inet6 static
address 2a09:6840:130::0:{{ router_hard_ip_suffix }}/64
# VLAN 111: IPs publiques serveurs
auto ens21
iface ens21 inet static
address 45.66.111.{{ router_hard_ip_suffix }}/24
# Nécessaire pour contacter re2o et bootstrap le firewall.
# Ces directives sont _aussi_ set par aurore-firewall !
up iptables -t nat -A POSTROUTING -s 10.129.0.{{ router_hard_ip_suffix }}/32 -j SNAT --to-source 45.66.111.{{ router_hard_ip_suffix }}
up iptables -t nat -A POSTROUTING -s 10.128.0.0/16 -j SNAT --to-source 45.66.111.{{ router_hard_ip_suffix }}
up iptables -t nat -A POSTROUTING -s 10.130.0.0/16 -j SNAT --to-source 45.66.111.{{ router_hard_ip_suffix }}
iface ens21 inet6 static
address 2a09:6840:111::{{ router_hard_ip_suffix }}/48
# VLAN 110: IP publiques adhérents
auto ens22
iface ens22 inet static
address 45.66.110.{{ router_hard_ip_suffix }}/24
iface ens22 inet6 static
address 2a09:6840:110::{{ router_hard_ip_suffix }}/48
# VLAN 131: onduleurs et PDU
auto ens23
iface ens23 inet static
address 10.131.0.{{ router_hard_ip_suffix }}/16
iface ens23 inet6 static
address 2a09:6840:131::0:{{ router_hard_ip_suffix }}/64
# VLAN 120: Interco Zayo
auto ens1
iface ens1 inet manual
iface ens1 inet6 manual
# VLAN 121: Interco Crans
auto ens2
iface ens2 inet manual
iface ens2 inet6 manual