diff options
author | Christian Pointner <equinox@spreadspace.org> | 2024-03-16 23:00:00 +0100 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2024-03-16 23:00:00 +0100 |
commit | 2940fb38e0f3ee26e6ce103a72e290f8e46daeca (patch) | |
tree | e49323076abcfc500bdb05c942502fcdc96ce175 | |
parent | companion: generate ssh keypair to be used with ssh plugin (diff) |
ele-router-hmtsaal: add NAT for mixer vlan
ele-companion-raspi: base deployment
-rw-r--r-- | dan/ele-companion-raspi.yml | 17 | ||||
-rw-r--r-- | inventory/group_vars/elevate-festival/vars.yml | 7 | ||||
-rw-r--r-- | inventory/host_vars/ele-companion-raspi.yml | 43 | ||||
-rw-r--r-- | inventory/host_vars/ele-router-hmtsaal.yml | 4 | ||||
-rw-r--r-- | inventory/hosts.ini | 3 |
5 files changed, 69 insertions, 5 deletions
diff --git a/dan/ele-companion-raspi.yml b/dan/ele-companion-raspi.yml new file mode 100644 index 00000000..83ff46e5 --- /dev/null +++ b/dan/ele-companion-raspi.yml @@ -0,0 +1,17 @@ +--- +- name: Basic Setup + hosts: ele-companion-raspi + roles: + - role: apt-repo/base + - role: core/base + - role: core/sshd/base + - role: core/zsh + - role: core/ntp + +- name: Payload Setup + hosts: ele-companion-raspi + roles: + - role: apt-repo/spreadspace + - role: kubernetes/base + - role: kubernetes/standalone/base + - role: streaming/companion diff --git a/inventory/group_vars/elevate-festival/vars.yml b/inventory/group_vars/elevate-festival/vars.yml index ad09738a..9d87a9ed 100644 --- a/inventory/group_vars/elevate-festival/vars.yml +++ b/inventory/group_vars/elevate-festival/vars.yml @@ -193,12 +193,13 @@ network_zones: description: "video and audio mixer control interfaces" vlan: 48 prefix: 192.168.48.0/24 - gateway: 192.168.48.254 + gateway: 192.168.48.253 dns: - - 192.168.48.254 + - 192.168.48.253 offsets: + ele-hyperion: 26 ele-ymir: 27 - companion: 42 + ele-companion-raspi: 42 kuschelbaer: 48 mr-snuggles: 49 atem-datacop: 90 diff --git a/inventory/host_vars/ele-companion-raspi.yml b/inventory/host_vars/ele-companion-raspi.yml new file mode 100644 index 00000000..cbfd8e2f --- /dev/null +++ b/inventory/host_vars/ele-companion-raspi.yml @@ -0,0 +1,43 @@ +--- +raspios_variant: lite +raspios_arch: arm64 + +network: + nameservers: "{{ network_zones.mixer.dns }}" + domain: "{{ host_domain }}" + primary: &_network_primary_ + name: eth0 + address: "{{ network_zones.mixer.prefix | ansible.utils.ipaddr(network_zones.mixer.offsets[inventory_hostname]) }}" + gateway: "{{ network_zones.mixer.gateway }}" + interfaces: + - *_network_primary_ + +raspios_boot_config: + - regexp: '^#?dtoverlay=disable-bt' + line: 'dtoverlay=disable-bt' + - regexp: '^#?dtoverlay=disable-wifi' + line: 'dtoverlay=disable-wifi' + +base_entropy_generator: rngd + + +spreadspace_apt_repo_components: + - container + + +docker_pkg_provider: docker-com +docker_plugins: + - buildx + +kubernetes_version: 1.29.2 +kubernetes_container_runtime: docker +kubernetes_standalone_max_pods: 42 +kubernetes_standalone_cni_variant: with-portmap +kubernetes_standalone_install_kubeletctl: no + + +companion_storage: + type: directory + dest: /srv/companion + +companion_version: 3.2.2 diff --git a/inventory/host_vars/ele-router-hmtsaal.yml b/inventory/host_vars/ele-router-hmtsaal.yml index 426e4c02..e5ab11a6 100644 --- a/inventory/host_vars/ele-router-hmtsaal.yml +++ b/inventory/host_vars/ele-router-hmtsaal.yml @@ -293,12 +293,12 @@ openwrt_mixin: chain forward { type filter hook forward priority filter; policy drop; ct state vmap { established: accept, related: accept, invalid: drop } - iifname { {{ ['$nic_'] | product(network_internal_zone_names) | map('join') | join(', ') }} } oifname $nic_citycom accept + iifname { {{ ['$nic_'] | product(network_internal_zone_names | union(['mixer'])) | map('join') | join(', ') }} } oifname $nic_citycom accept } chain postrouting { type nat hook postrouting priority srcnat; policy accept; - ip saddr { {{ ['$prefix_'] | product(network_internal_zone_names) | map('join') | join(', ') }} } oifname $nic_citycom snat to $ip_citycom + ip saddr { {{ ['$prefix_'] | product(network_internal_zone_names | union(['mixer'])) | map('join') | join(', ') }} } oifname $nic_citycom snat to $ip_citycom } } diff --git a/inventory/hosts.ini b/inventory/hosts.ini index 306030c6..376ec48e 100644 --- a/inventory/hosts.ini +++ b/inventory/hosts.ini @@ -235,6 +235,7 @@ ele-jitsi ele-winvm ele-testvm ele-stage-raspi +ele-companion-raspi [elevate:children] ele-ap @@ -353,6 +354,7 @@ ch-octopi ch-epimetheus ch-companion-raspi ele-stage-raspi +ele-companion-raspi [raspios:children] dolmetsch-raspi @@ -617,6 +619,7 @@ glt-thetys sk-testvm ch-testvm-prometheus ch-companion-raspi +ele-companion-raspi [kubernetes:children] kubernetes-cluster |