tuto3: add ipv6 routing through WG
This commit is contained in:
parent
9139129430
commit
a19cd9250f
32
tuto3.yml
32
tuto3.yml
@ -53,8 +53,10 @@ onboot:
|
|||||||
# Network: workstations
|
# Network: workstations
|
||||||
- name: net-wks-setup
|
- name: net-wks-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 192.168.6.254/24 dev ethwks; ip link set ethwks up;" ]
|
command: ["/bin/sh", "-c", "ip a add 192.168.6.254/24 dev ethwks; ip link set ethwks up; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#1::1/96#\") dev ethwks;" ]
|
||||||
net: /run/netns/router
|
net: /run/netns/router
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: ethwks
|
- name: ethwks
|
||||||
@ -64,8 +66,10 @@ onboot:
|
|||||||
# # Network: servers
|
# # Network: servers
|
||||||
- name: net-srv-setup
|
- name: net-srv-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.1/24 dev ethsrv; ip link set ethsrv up;" ]
|
command: ["/bin/sh", "-c", "ip a add 172.23.42.1/24 dev ethsrv; ip link set ethsrv up; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1/96#\") dev ethsrv;" ]
|
||||||
net: /run/netns/router
|
net: /run/netns/router
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: ethsrv
|
- name: ethsrv
|
||||||
@ -73,8 +77,10 @@ onboot:
|
|||||||
peer: veth-srv
|
peer: veth-srv
|
||||||
- name: net-srvns-setup
|
- name: net-srvns-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.2/24 dev vethin-ns; ip link set vethin-ns up; ip route add default via 172.23.42.1;" ]
|
command: ["/bin/sh", "-c", "ip a add 172.23.42.2/24 dev vethin-ns; ip link set vethin-ns up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:2/96#\") dev vethin-ns; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||||
net: new
|
net: new
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: vethin-ns
|
- name: vethin-ns
|
||||||
@ -84,8 +90,10 @@ onboot:
|
|||||||
net: /run/netns/ns
|
net: /run/netns/ns
|
||||||
- name: net-srvnsauth-setup
|
- name: net-srvnsauth-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.3/24 dev vethin-nsauth; ip link set vethin-nsauth up; ip route add default via 172.23.42.1;" ]
|
command: ["/bin/sh", "-c", "ip a add 172.23.42.3/24 dev vethin-nsauth; ip link set vethin-nsauth up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:3/96#\") dev vethin-nsauth; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||||
net: new
|
net: new
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: vethin-nsauth
|
- name: vethin-nsauth
|
||||||
@ -95,8 +103,10 @@ onboot:
|
|||||||
net: /run/netns/ns-auth
|
net: /run/netns/ns-auth
|
||||||
- name: net-srvdb-setup
|
- name: net-srvdb-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.4/24 dev vethin-db; ip link set vethin-db up; ip route add default via 172.23.42.1;" ]
|
command: ["/bin/sh", "-c", "ip a add 172.23.42.4/24 dev vethin-db; ip link set vethin-db up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:4/96#\") dev vethin-db; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||||
net: new
|
net: new
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: vethin-db
|
- name: vethin-db
|
||||||
@ -106,8 +116,10 @@ onboot:
|
|||||||
net: /run/netns/db
|
net: /run/netns/db
|
||||||
- name: net-srvchat-setup
|
- name: net-srvchat-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.5/24 dev vethin-chat; ip link set vethin-chat up; ip route add default via 172.23.42.1;" ]
|
command: ["/bin/sh", "-c", "ip a add 172.23.42.5/24 dev vethin-chat; ip link set vethin-chat up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:5/96#\") dev vethin-chat; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||||
net: new
|
net: new
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: vethin-chat
|
- name: vethin-chat
|
||||||
@ -117,8 +129,10 @@ onboot:
|
|||||||
net: /run/netns/chat
|
net: /run/netns/chat
|
||||||
- name: net-srvttrss-setup
|
- name: net-srvttrss-setup
|
||||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.6/24 dev vethin-ttrss; ip link set vethin-ttrss up; ip route add default via 172.23.42.1;" ]
|
command: ["/bin/sh", "-c", "ip a add 172.23.42.6/24 dev vethin-ttrss; ip link set vethin-ttrss up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:6/96#\") dev vethin-ttrss; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||||
net: new
|
net: new
|
||||||
|
binds:
|
||||||
|
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
runtime:
|
runtime:
|
||||||
interfaces:
|
interfaces:
|
||||||
- name: vethin-ttrss
|
- name: vethin-ttrss
|
||||||
@ -128,8 +142,10 @@ onboot:
|
|||||||
net: /run/netns/ttrss
|
net: /run/netns/ttrss
|
||||||
# - name: net-srvmail-setup
|
# - name: net-srvmail-setup
|
||||||
# image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
# image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||||
# command: ["/bin/sh", "-c", "ip a add 172.23.42.7/24 dev vethin-mail; ip link set vethin-mail up; ip route add default via 172.23.42.1;" ]
|
# command: ["/bin/sh", "-c", "ip a add 172.23.42.7/24 dev vethin-mail; ip link set vethin-mail up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:7/96#\") dev vethin-mail; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||||
# net: new
|
# net: new
|
||||||
|
# binds:
|
||||||
|
# - /var/lib/adlin/wireguard:/etc/wireguard
|
||||||
# runtime:
|
# runtime:
|
||||||
# interfaces:
|
# interfaces:
|
||||||
# - name: vethin-mail
|
# - name: vethin-mail
|
||||||
|
Reference in New Issue
Block a user