diff --git a/gw03.pp b/gw03.pp new file mode 100644 index 0000000..41ea6b1 --- /dev/null +++ b/gw03.pp @@ -0,0 +1,78 @@ +class { 'ffnord::params': + router_id => "10.112.1.3", # The id of this router, probably the ipv4 address + # of the mesh device of the providing community + icvpn_as => "65112", # The as of the providing community + wan_devices => ['eth0'], # A array of devices which should be in the wan zone +} + +ffnord::mesh { 'mesh_ffhh': + mesh_name => "Freifunk Hamburg", + mesh_code => "ffhh", + mesh_as => 65112, + mesh_mac => "de:ad:be:ef:03:03", + mesh_ipv6 => "2a03:2267::301/64", + mesh_ipv4 => "10.112.1.3/18", + mesh_mtu => "1406", + range_ipv4 => "10.112.0.0/16", + mesh_peerings => "/root/mesh_peerings.yaml", + + fastd_secret => "/root/fastd_secret.key", + fastd_port => 10000, + fastd_peers_git => 'git@git.hamburg.freifunk.net:fastdkeys', + + dhcp_ranges => [ '10.112.18.2 10.112.25.254' + ], + dns_servers => [ '10.112.1.1' + ], +} + +class { + 'ffnord::monitor::munin': + host => '78.47.49.236' +} + +ffnord::dhcpd::static { + 'ffhh': static_git => 'https://github.com/freifunkhamburg/dhcp-static.git'; +} + +ffnord::uplink6::bgp { + 'wende0': + local_ipv6 => "fd2a:322:6700:bb00::2", + remote_ipv6 => "fd2a:322:6700:bb00::1", + remote_as => "49009"; +} +ffnord::uplink6::interface { + 'eth1':; +} + +class { + 'ffnord::uplink::ip': + nat_network => '185.66.193.1/32', + tunnel_network => '100.64.0.0/28', +} +ffnord::uplink::tunnel { + 'ffrlber': + local_public_ip => "213.128.138.161", + remote_public_ip => "185.66.195.0", + local_ipv4 => "100.64.0.3/31", + remote_ip => "100.64.0.2", + remote_as => "201701"; + 'ffrlfra': + local_public_ip => "213.128.138.161", + remote_public_ip => "195.20.242.196", + local_ipv4 => "100.64.0.9/31", + remote_ip => "100.64.0.8", + remote_as => "201701"; +} + +ffnord::icvpn::setup { 'hamburg03': + icvpn_as => 65112, + icvpn_ipv4_address => "10.207.0.63", + icvpn_ipv6_address => "fec0::a:cf:0:3f", + icvpn_exclude_peerings => [hamburg], + tinc_keyfile => "/root/tinc_rsa_key.priv" +} + +class { 'ffnord::alfred': master => false } + +class { 'ffnord::etckeeper': }