--- hiera_include: - profiles::selinux::frr - frrouting # additional repos profiles::yum::global::repos: frr-extras: name: frr-extras descr: frr-extras repository target: /etc/yum.repos.d/frr-extras.repo baseurl: https://packagerepo.service.consul/frr/el9/extras-daily/%{facts.os.architecture}/os gpgkey: https://packagerepo.service.consul/frr/el9/extras-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-FRR mirrorlist: absent frr-stable: name: frr-stable descr: frr-stable repository target: /etc/yum.repos.d/frr-stable.repo baseurl: https://packagerepo.service.consul/frr/el9/stable-daily/%{facts.os.architecture}/os gpgkey: https://packagerepo.service.consul/frr/el9/stable-daily/%{facts.os.architecture}/os/RPM-GPG-KEY-FRR mirrorlist: absent # networking systemd::manage_networkd: true systemd::manage_all_network_files: true networking::interfaces: eth0: dhcp: true type: physical mtu: 8000 forwarding: true loopback0: type: dummy ipaddress: "%{hiera('networking_loopback0_ip')}" netmask: 255.255.255.255 mtu: 8000 # frrouting frrouting::ospfd_router_id: "%{hiera('networking_loopback0_ip')}" frrouting::ospfd_redistribute: - connected frrouting::ospfd_interfaces: eth0: area: 0.0.0.0 loopback0: area: 0.0.0.0 frrouting::mpls_te_enabled: true frrouting::mpls_ldp_router_id: "%{hiera('networking_loopback0_ip')}" frrouting::mpls_ldp_transport_addr: "%{hiera('networking_loopback0_ip')}" frrouting::mpls_ldp_interfaces: - eth0 - loopback0 frrouting::daemons: ldpd: true ospfd: true # add loopback interfaces to ssh list ssh::server::options: ListenAddress: - "%{hiera('networking_loopback0_ip')}" # sysctl recommendations sysctl::base::values: net.ipv4.conf.all.forwarding: value: '1' net.ipv6.conf.all.forwarding: value: '1' net.ipv4.tcp_l3mdev_accept: value: '0' net.ipv4.conf.default.rp_filter: value: '0' net.ipv4.conf.all.rp_filter: value: '0' net.mpls.platform_labels: value: '1048575' net.mpls.conf.eth0.input: value: '1' net.mpls.conf.loopback0.input: value: '1'