tuto3: add ipv6 routing through WG
This commit is contained in:
parent
9139129430
commit
a19cd9250f
32
tuto3.yml
32
tuto3.yml
@ -53,8 +53,10 @@ onboot:
|
||||
# Network: workstations
|
||||
- name: net-wks-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 192.168.6.254/24 dev ethwks; ip link set ethwks up;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 192.168.6.254/24 dev ethwks; ip link set ethwks up; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#1::1/96#\") dev ethwks;" ]
|
||||
net: /run/netns/router
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: ethwks
|
||||
@ -64,8 +66,10 @@ onboot:
|
||||
# # Network: servers
|
||||
- name: net-srv-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.1/24 dev ethsrv; ip link set ethsrv up;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.1/24 dev ethsrv; ip link set ethsrv up; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1/96#\") dev ethsrv;" ]
|
||||
net: /run/netns/router
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: ethsrv
|
||||
@ -73,8 +77,10 @@ onboot:
|
||||
peer: veth-srv
|
||||
- name: net-srvns-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.2/24 dev vethin-ns; ip link set vethin-ns up; ip route add default via 172.23.42.1;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.2/24 dev vethin-ns; ip link set vethin-ns up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:2/96#\") dev vethin-ns; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||
net: new
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: vethin-ns
|
||||
@ -84,8 +90,10 @@ onboot:
|
||||
net: /run/netns/ns
|
||||
- name: net-srvnsauth-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.3/24 dev vethin-nsauth; ip link set vethin-nsauth up; ip route add default via 172.23.42.1;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.3/24 dev vethin-nsauth; ip link set vethin-nsauth up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:3/96#\") dev vethin-nsauth; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||
net: new
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: vethin-nsauth
|
||||
@ -95,8 +103,10 @@ onboot:
|
||||
net: /run/netns/ns-auth
|
||||
- name: net-srvdb-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.4/24 dev vethin-db; ip link set vethin-db up; ip route add default via 172.23.42.1;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.4/24 dev vethin-db; ip link set vethin-db up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:4/96#\") dev vethin-db; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||
net: new
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: vethin-db
|
||||
@ -106,8 +116,10 @@ onboot:
|
||||
net: /run/netns/db
|
||||
- name: net-srvchat-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.5/24 dev vethin-chat; ip link set vethin-chat up; ip route add default via 172.23.42.1;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.5/24 dev vethin-chat; ip link set vethin-chat up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:5/96#\") dev vethin-chat; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||
net: new
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: vethin-chat
|
||||
@ -117,8 +129,10 @@ onboot:
|
||||
net: /run/netns/chat
|
||||
- name: net-srvttrss-setup
|
||||
image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.6/24 dev vethin-ttrss; ip link set vethin-ttrss up; ip route add default via 172.23.42.1;" ]
|
||||
command: ["/bin/sh", "-c", "ip a add 172.23.42.6/24 dev vethin-ttrss; ip link set vethin-ttrss up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:6/96#\") dev vethin-ttrss; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||
net: new
|
||||
binds:
|
||||
- /var/lib/adlin/wireguard:/etc/wireguard
|
||||
runtime:
|
||||
interfaces:
|
||||
- name: vethin-ttrss
|
||||
@ -128,8 +142,10 @@ onboot:
|
||||
net: /run/netns/ttrss
|
||||
# - name: net-srvmail-setup
|
||||
# image: linuxkit/ip:4787413a729748bcf7560c73e0b46d38b8a8df2b
|
||||
# command: ["/bin/sh", "-c", "ip a add 172.23.42.7/24 dev vethin-mail; ip link set vethin-mail up; ip route add default via 172.23.42.1;" ]
|
||||
# command: ["/bin/sh", "-c", "ip a add 172.23.42.7/24 dev vethin-mail; ip link set vethin-mail up; ip route add default via 172.23.42.1; grep MyIPv6= /etc/wireguard/adlin.conf > /dev/null && { ip a add $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:7/96#\") dev vethin-mail; ip route add default via $(sed 's/^.*MyIPv6=//p;d' /etc/wireguard/adlin.conf | sed \"s#:[^:/]*/.*\\$#:1#\"); }" ]
|
||||
# net: new
|
||||
# binds:
|
||||
# - /var/lib/adlin/wireguard:/etc/wireguard
|
||||
# runtime:
|
||||
# interfaces:
|
||||
# - name: vethin-mail
|
||||
|
Reference in New Issue
Block a user