forked from rubo77/ffki-puppet-config
-
Notifications
You must be signed in to change notification settings - Fork 0
/
4.gw.manifest
66 lines (59 loc) · 1.73 KB
/
4.gw.manifest
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
class { 'ffnord::params':
router_id => "10.116.152.1",
icvpn_as => "65525",
wan_devices => ['eth0'],
wmem_default => 87380,
wmem_max => 12582912,
rmem_default => 87380,
rmem_max => 12582912,
gw_control_ips => "217.70.197.1",
max_backlog => 5000,
include_bird4 => false,
maintenance => 1,
batman_version => 14,
}
ffnord::mesh { 'mesh_ffki':
mesh_name => "Freifunk Kiel"
, mesh_code => "ffki"
, mesh_as => "65525"
, mesh_mac => "de:ad:be:ef:ff:04"
, vpn_mac => "de:ad:be:ff:ff:04"
, mesh_ipv6 => "fda1:384a:74de:4242::ff04/64"
, mesh_ipv4 => "10.116.152.1/17"
, range_ipv4 => "10.116.0.0/16"
, mesh_mtu => "1280"
, mesh_peerings => "/opt/ffki-puppet-config/mesh_peerings.yaml"
, fastd_secret => "/opt/ffki-vpn4-fastd-secret.key"
, fastd_port => 11235
, fastd_peers_git => 'git://git.freifunk.in-kiel.de/fastd-peer-keys.git'
, dhcp_ranges => ['10.116.152.2 10.116.159.254']
, dns_servers => ['10.116.152.1']
}
class {'ffnord::vpn::provider::pia':
openvpn_server => "germany.privateinternetaccess.com",
openvpn_port => 3478,
openvpn_user => "xxxx",
openvpn_password => "xxxxx",
}
ffnord::named::zone {
"ffki": zone_git => "git://git.freifunk.in-kiel.de/ffki-zone.git", exclude_meta => 'kiel';
}
#ffnord::icvpn::setup {
# 'kiel4':
# icvpn_as => 65525,
# icvpn_ipv4_address => "10.207.0.54",
# icvpn_ipv6_address => "fec0::a:cf:0:35",
# icvpn_exclude_peerings => [kiel],
# tinc_keyfile => "/root/ffki-fastd-secret.key.priv"
#}
class {
'ffnord::rsyslog':
}
class {
'ffnord::etckeeper':
}
# Useful packages
package {
['vim','tcpdump','dnsutils','realpath','screen','htop','mlocate','tig','sshguard']:
ensure => installed;
}