feat: manage route-reflectors
- add route-reflector role and hieradata - enable using dhcp in networkd - add hieradata/node/* entries for route-reflectors
This commit is contained in:
@@ -110,12 +110,16 @@ frrouting::ospfd_interfaces:
|
||||
area: 0.0.0.0
|
||||
loopback2:
|
||||
area: 0.0.0.0
|
||||
brmplscore:
|
||||
area: 0.0.0.0
|
||||
frrouting::mpls_te_enabled: true
|
||||
frrouting::mpls_ldp_router_id: "%{hiera('networking_loopback0_ip')}"
|
||||
frrouting::mpls_ldp_transport_addr: "%{hiera('networking_loopback0_ip')}"
|
||||
frrouting::mpls_ldp_interfaces:
|
||||
- loopback0
|
||||
- enp2s0
|
||||
- enp3s0
|
||||
- brmplscore
|
||||
frrouting::daemons:
|
||||
ldpd: true
|
||||
ospfd: true
|
||||
@@ -199,6 +203,10 @@ sysctl::base::values:
|
||||
value: '1'
|
||||
net.mpls.conf.enp3s0.input:
|
||||
value: '1'
|
||||
net.mpls.conf.brmplscore.input:
|
||||
value: '1'
|
||||
net.mpls.conf.loopback0.input:
|
||||
value: '1'
|
||||
|
||||
# limits.d recommendations
|
||||
limits::entries:
|
||||
|
||||
@@ -0,0 +1,79 @@
|
||||
---
|
||||
hiera_include:
|
||||
- profiles::selinux::frr
|
||||
- frrouting
|
||||
|
||||
# additional repos
|
||||
profiles::yum::global::repos:
|
||||
frr-extras:
|
||||
name: frr-extras
|
||||
descr: frr-extras repository
|
||||
target: /etc/yum.repos.d/frr-extras.repo
|
||||
baseurl: https://packagerepo.service.consul/frr/el9/extras-daily/%{facts.os.architecture}/os
|
||||
gpgkey: https://packagerepo.service.consul/frr/el9/extras-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-FRR
|
||||
mirrorlist: absent
|
||||
frr-stable:
|
||||
name: frr-stable
|
||||
descr: frr-stable repository
|
||||
target: /etc/yum.repos.d/frr-stable.repo
|
||||
baseurl: https://packagerepo.service.consul/frr/el9/stable-daily/%{facts.os.architecture}/os
|
||||
gpgkey: https://packagerepo.service.consul/frr/el9/stable-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-FRR
|
||||
mirrorlist: absent
|
||||
|
||||
# networking
|
||||
systemd::manage_networkd: true
|
||||
systemd::manage_all_network_files: true
|
||||
networking::interfaces:
|
||||
eth0:
|
||||
dhcp: true
|
||||
type: physical
|
||||
mtu: 8000
|
||||
forwarding: true
|
||||
loopback0:
|
||||
type: dummy
|
||||
ipaddress: "%{hiera('networking_loopback0_ip')}"
|
||||
netmask: 255.255.255.255
|
||||
mtu: 8000
|
||||
|
||||
# frrouting
|
||||
frrouting::ospfd_router_id: "%{hiera('networking_loopback0_ip')}"
|
||||
frrouting::ospfd_redistribute:
|
||||
- connected
|
||||
frrouting::ospfd_interfaces:
|
||||
eth0:
|
||||
area: 0.0.0.0
|
||||
loopback0:
|
||||
area: 0.0.0.0
|
||||
frrouting::mpls_te_enabled: true
|
||||
frrouting::mpls_ldp_router_id: "%{hiera('networking_loopback0_ip')}"
|
||||
frrouting::mpls_ldp_transport_addr: "%{hiera('networking_loopback0_ip')}"
|
||||
frrouting::mpls_ldp_interfaces:
|
||||
- eth0
|
||||
- loopback0
|
||||
frrouting::daemons:
|
||||
ldpd: true
|
||||
ospfd: true
|
||||
|
||||
# add loopback interfaces to ssh list
|
||||
ssh::server::options:
|
||||
ListenAddress:
|
||||
- "%{hiera('networking_loopback0_ip')}"
|
||||
|
||||
# sysctl recommendations
|
||||
sysctl::base::values:
|
||||
net.ipv4.conf.all.forwarding:
|
||||
value: '1'
|
||||
net.ipv6.conf.all.forwarding:
|
||||
value: '1'
|
||||
net.ipv4.tcp_l3mdev_accept:
|
||||
value: '0'
|
||||
net.ipv4.conf.default.rp_filter:
|
||||
value: '0'
|
||||
net.ipv4.conf.all.rp_filter:
|
||||
value: '0'
|
||||
net.mpls.platform_labels:
|
||||
value: '1048575'
|
||||
net.mpls.conf.eth0.input:
|
||||
value: '1'
|
||||
net.mpls.conf.loopback0.input:
|
||||
value: '1'
|
||||
Reference in New Issue
Block a user