From 76fb3c68ac811bbcdd86b7afabac64d1534ea9e8 Mon Sep 17 00:00:00 2001 From: Christoph Date: Thu, 1 Apr 2021 15:48:15 +0200 Subject: [PATCH] Add host vars for o30.oopen.de (host_vars/o30.oopen.de.yml). --- host_vars/o30.oopen.de.yml | 105 +++++++++++++++++++++++++++++++++---- 1 file changed, 96 insertions(+), 9 deletions(-) diff --git a/host_vars/o30.oopen.de.yml b/host_vars/o30.oopen.de.yml index 0d0c80c..45f7469 100644 --- a/host_vars/o30.oopen.de.yml +++ b/host_vars/o30.oopen.de.yml @@ -1,5 +1,100 @@ --- +# --- +# vars used by roles/network_interfaces +# --- + + +# If true, all additional files in /etc/network/interfaces/interfaces.d/ are deleted +network_manage_devices: True + +# Should the interfaces be reloaded after config change? +network_interface_reload: False + +network_interface_path: /etc/network/interfaces.d +network_interface_required_packages: + - vlan + - bridge-utils + - ifmetric + - ifupdown2 + + +network_interfaces: + + - device: br0 + # use only once per device (for the first device entry) + headline: br0 - bridge over device enp41s0 + + # auto & allow are only used for the first device entry + allow: [] # array of allow-[stanzas] eg. allow-hotplug + auto: true + + family: inet + mode: static + description: Bridge Interface IPv4 for LXC + address: '148.251.14.157' + netmask: '255.255.255.224' + network: '148.251.14.128' + broadcast: '148.251.14.159' + gateway: '148.251.14.129' + + # optional dns settings nameservers: [] + # nameservers: + # - "194.150.168.168" # dns.as250.net + # - "91.239.100.100" # anycast.censurfridns.dk + + # optional additional subnets/ips subnets: [] + # subnets: + # - '192.168.123.0/24' + # - '192.168.124.11/32' + + # optional bridge parameters bridge: {} + # bridge: + # ports: + # stp: + # fd: + # maxwait: + # waitport: + bridge: + ports: enp41s0 # for mor devices support a blan separated list + stp: !!str off + fd: 5 + hello: 2 + + # optional bonding parameters bond: {} + # bond: + # mode: + # miimon: + # master: + # slaves: + # lacp-rate: + bond: {} + + # optional vlan settings | vlan: {} + # vlan: {} + # raw-device: 'eth0' + vlan: {} + + # inline hook scripts + pre-up: [] # pre-up script lines + up: + - !!str "route add -net 148.251.14.128 netmask 255.255.255.224 gw 148.251.14.129 dev br0" # up script lines + post-up: [] # post-up script lines (alias for up) + pre-down: [] # pre-down script lines (alias for down) + down: [] # down script lines + post-down: [] # post-down script lines + + + + - device: br0 + family: inet6 + mode: static + description: Bridge Interface IPv6 for LXC + address: '2a01:4f8:201:7389::2' + netmask: 64 + gateway: 'fe80::1' + + # --- # vars used by roles/ansible_dependencies # --- @@ -24,8 +119,6 @@ # vars used by roles/common/tasks/apt.yml # --- -#apt_manage_sources_list: false - # --- # vars used by roles/common/tasks/users.yml @@ -64,7 +157,7 @@ default_user: user_id: 1050 group_id: 1050 group: sysadm - password: $6$E/CfbXkLGX4ybZF1$2HGWN1OoNUtc8qiMH1KRY8KR59lF80ODLhHYobuW3VNxNhGCsF7Uze5Ef2WQaR3.LZaz4qLK418HXCFFpuO8/. + password: $6$EEVWxA5E$bNxU8EOp/tTcYVghFharUM10k3vRt2siEnIiiznfGmhMSM6zJTP0umdxql9VVEj856oKa.Sp.q3N2nthgNMeN1 shell: /bin/bash ssh_keys: - 'ssh-rsa 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 chris@luna' @@ -111,12 +204,6 @@ sudo_users: # # see: roles/common/tasks/vars -sudoers_file_user_privileges: - - name: ALL - entry: 'ALL = (root) NOPASSWD: /usr/local/src/jitsi/jitsi_enable_recording.sh' - - name: ALL - entry: 'ALL = (root) NOPASSWD: /usr/local/src/jitsi/jitsi_disable_recording.sh' - # --- # vars used by roles/common/tasks/caching-nameserver.yml