teach
/
adlin
Archived
0
0
Fork 0
Code Issues 1 Pull Requests 4 Releases Activity

tuto3: add ipv6 routing through WG

This commit is contained in:
nemunaire 2019-04-19 21:27:22 +02:00 committed by Pierre-Olivier Mercier
parent 9139129430
commit a19cd9250f
1 changed files with 24 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
tuto3.yml
View File

@ -53,8 +53,10 @@ onboot:
# Network: workstations
- name: net-wks-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 192.168.6.254/24 dev ethwks; ip link set ethwks up;" ]
command: ["/bin/sh", "-c", "ip a add 192.168.6.254/24 dev ethwks; ip link set ethwks up; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#1::1/96#\") dev ethwks;" ]
net: /run/netns/router
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: ethwks
@ -64,8 +66,10 @@ onboot:
# # Network: servers
- name: net-srv-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 172.23.42.1/24 dev ethsrv; ip link set ethsrv up;" ]
command: ["/bin/sh", "-c", "ip a add 172.23.42.1/24 dev ethsrv; ip link set ethsrv up; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1/96#\") dev ethsrv;" ]
net: /run/netns/router
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: ethsrv
@ -73,8 +77,10 @@ onboot:
peer: veth-srv
- name: net-srvns-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 172.23.42.2/24 dev vethin-ns; ip link set vethin-ns up; ip route add default via 172.23.42.1;" ]
command: ["/bin/sh", "-c", "ip a add 172.23.42.2/24 dev vethin-ns; ip link set vethin-ns up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:2/96#\") dev vethin-ns; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
net: new
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: vethin-ns
@ -84,8 +90,10 @@ onboot:
net: /run/netns/ns
- name: net-srvnsauth-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 172.23.42.3/24 dev vethin-nsauth; ip link set vethin-nsauth up; ip route add default via 172.23.42.1;" ]
command: ["/bin/sh", "-c", "ip a add 172.23.42.3/24 dev vethin-nsauth; ip link set vethin-nsauth up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:3/96#\") dev vethin-nsauth; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
net: new
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: vethin-nsauth
@ -95,8 +103,10 @@ onboot:
net: /run/netns/ns-auth
- name: net-srvdb-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 172.23.42.4/24 dev vethin-db; ip link set vethin-db up; ip route add default via 172.23.42.1;" ]
command: ["/bin/sh", "-c", "ip a add 172.23.42.4/24 dev vethin-db; ip link set vethin-db up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:4/96#\") dev vethin-db; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
net: new
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: vethin-db
@ -106,8 +116,10 @@ onboot:
net: /run/netns/db
- name: net-srvchat-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 172.23.42.5/24 dev vethin-chat; ip link set vethin-chat up; ip route add default via 172.23.42.1;" ]
command: ["/bin/sh", "-c", "ip a add 172.23.42.5/24 dev vethin-chat; ip link set vethin-chat up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:5/96#\") dev vethin-chat; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
net: new
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: vethin-chat
@ -117,8 +129,10 @@ onboot:
net: /run/netns/chat
- name: net-srvttrss-setup
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
command: ["/bin/sh", "-c", "ip a add 172.23.42.6/24 dev vethin-ttrss; ip link set vethin-ttrss up; ip route add default via 172.23.42.1;" ]
command: ["/bin/sh", "-c", "ip a add 172.23.42.6/24 dev vethin-ttrss; ip link set vethin-ttrss up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:6/96#\") dev vethin-ttrss; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
net: new
binds:
- /var/lib/adlin/wireguard:/etc/wireguard
runtime:
interfaces:
- name: vethin-ttrss
@ -128,8 +142,10 @@ onboot:
net: /run/netns/ttrss
# - name: net-srvmail-setup
# image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
# command: ["/bin/sh", "-c", "ip a add 172.23.42.7/24 dev vethin-mail; ip link set vethin-mail up; ip route add default via 172.23.42.1;" ]
# command: ["/bin/sh", "-c", "ip a add 172.23.42.7/24 dev vethin-mail; ip link set vethin-mail up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:7/96#\") dev vethin-mail; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
# net: new
# binds:
# - /var/lib/adlin/wireguard:/etc/wireguard
# runtime:
# interfaces:
# - name: vethin-mail