Skip to content
/ AS211184 Public

Ansible playbooks for personal IPv6 network at AS211184

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

33Fraise33/AS211184

BranchesTags

Repository files navigation

AS211184 Playbooks

This is my ansible project to manage my own infrastructure for my personal AS for labbing and selfhost requirements. These exist because I like this.

Structure

Running a playbook

eval `ssh-agent`
ssh-add <ssh-key here>
ansible-playbook -i inventories/development <playbook>.yml (vault pass is asked by default so --ask-vault-pass is not needed)

Encrypting passwords

ansible-vault encrypt_string
type in your ansible vault password (I use the same generated vault key for all my variables in this project and store the one password in my password manager.) Next enter your variable to encrypt and press ctrl+d twice.

Playbooks

Setup

  • Only run once otherwise the root password will be changes multiple times
  • Setup a clean debian host from scratch. Make sure a user exists and the root password is known, the run should be done with: -u debian -k --ask-become-pass

Common

  • Initial run can be done with -u debian -k --ask-become-pass, subsequent runs can be done with the configured default_user and an ssh key
  • Updates packages to latest version
  • Set default user and removes the setup one (debian or similar)
  • Installs packages needed for daily operation and network debugging

Networking

  • tag: interfaces
    • sets interfaces with ifupdown2
    • includes wireguard
  • tag: frr
    • sets routing with frr

Todo

  • frr
  • frr_exporter
  • iptables

About

Ansible playbooks for personal IPv6 network at AS211184

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages