Ben Vincent
7fcd8bfe7f
- add 30+ repository definitions to AlmaLinux/all_releases.yaml with `ensure: absent` defaults - update all role-specific hieradata files to use `ensure: present` pattern - remove duplicated repository URL/GPG key configurations from individual roles - maintains existing functionality while improving maintainability"
116 lines
2.8 KiB
YAML
116 lines
2.8 KiB
YAML
---
|
|
hiera_include:
|
|
- frrouting
|
|
- profiles::dhcp::server
|
|
- exporters::frr_exporter
|
|
|
|
# networking
|
|
anycast_ip: 198.18.19.18
|
|
systemd::manage_networkd: true
|
|
systemd::manage_all_network_files: true
|
|
networking::interfaces:
|
|
eth0:
|
|
type: physical
|
|
forwarding: true
|
|
dhcp: true
|
|
anycast0:
|
|
type: dummy
|
|
ipaddress: "%{hiera('anycast_ip')}"
|
|
netmask: 255.255.255.255
|
|
mtu: 1500
|
|
|
|
# frrouting
|
|
exporters::frr_exporter::enable: true
|
|
frrouting::ospfd_router_id: "%{facts.networking.ip}"
|
|
frrouting::ospfd_redistribute:
|
|
- connected
|
|
frrouting::ospfd_interfaces:
|
|
eth0:
|
|
area: 0.0.0.0
|
|
anycast0:
|
|
area: 0.0.0.0
|
|
frrouting::daemons:
|
|
ospfd: true
|
|
|
|
# consul
|
|
profiles::consul::client::node_rules:
|
|
- resource: service
|
|
segment: frr_exporter
|
|
disposition: write
|
|
|
|
# additional repos
|
|
profiles::yum::global::repos:
|
|
frr-extras:
|
|
ensure: present
|
|
frr-stable:
|
|
ensure: present
|
|
|
|
profiles::dhcp::server::ntpservers:
|
|
- 0.au.pool.ntp.org
|
|
- 1.au.pool.ntp.org
|
|
- 2.au.pool.ntp.org
|
|
- 3.au.pool.ntp.org
|
|
profiles::dhcp::server::interfaces:
|
|
- eth0
|
|
profiles::dhcp::server::default_lease_time: 1200
|
|
profiles::dhcp::server::globaloptions:
|
|
- 'arch code 93 = unsigned integer 16'
|
|
|
|
profiles::dhcp::server::pools:
|
|
syd1-prod:
|
|
network: 198.18.15.0
|
|
mask: 255.255.255.0
|
|
range:
|
|
- '198.18.15.200 198.18.15.220'
|
|
gateway: 198.18.15.254
|
|
nameservers: "%{alias('profiles_dns_upstream_forwarder_unkin')}"
|
|
domain_name: main.unkin.net
|
|
pxeserver: 198.18.19.19
|
|
syd1-test:
|
|
network: 198.18.16.0
|
|
mask: 255.255.255.0
|
|
range:
|
|
- '198.18.16.200 198.18.16.220'
|
|
gateway: 198.18.16.254
|
|
nameservers: "%{alias('profiles_dns_upstream_forwarder_unkin')}"
|
|
domain_name: main.unkin.net
|
|
pxeserver: 198.18.19.19
|
|
syd1-prod1:
|
|
network: 198.18.13.0
|
|
mask: 255.255.255.0
|
|
range:
|
|
- '198.18.13.200 198.18.13.220'
|
|
gateway: 198.18.13.254
|
|
nameservers: "%{alias('profiles_dns_upstream_forwarder_unkin')}"
|
|
domain_name: main.unkin.net
|
|
pxeserver: 198.18.19.19
|
|
syd1-prod2:
|
|
network: 198.18.14.0
|
|
mask: 255.255.255.0
|
|
range:
|
|
- '198.18.14.200 198.18.14.220'
|
|
gateway: 198.18.14.254
|
|
nameservers: "%{alias('profiles_dns_upstream_forwarder_unkin')}"
|
|
domain_name: main.unkin.net
|
|
pxeserver: 198.18.19.19
|
|
drw1-prod:
|
|
network: 198.18.17.0
|
|
mask: 255.255.255.0
|
|
range:
|
|
- '198.18.17.200 198.18.17.220'
|
|
gateway: 198.18.17.1
|
|
nameservers: "%{alias('profiles_dns_upstream_forwarder_unkin')}"
|
|
domain_name: main.unkin.net
|
|
pxeserver: 198.18.19.19
|
|
|
|
# UFI 64-bit
|
|
profiles::dhcp::server::classes:
|
|
UEFI-64:
|
|
parameters:
|
|
- 'match if option arch = 00:07 or option arch = 00:09'
|
|
- 'filename "/ipxe.efi"'
|
|
Legacy:
|
|
parameters:
|
|
- 'match if option arch = 00:00'
|
|
- 'filename "/undionly.kpxe"'
|