---
install_interface: enp1s0

install:
  efi: true
  disks:
    primary: software-raid
    raid:
      level: 1
      members:
      - /dev/disk/by-id/nvme-Samsung_SSD_970_PRO_512GB_S5JYNC0N310329Z
      - /dev/disk/by-id/nvme-Samsung_SSD_970_PRO_512GB_S5JYNC0N310327Y
  system_lvm:
    size: 25G

network:
  nameservers:
    - 9.9.9.9
  domain: "{{ host_domain }}"
  primary: &_network_primary_
    name: br-lan
    address: "{{ network_zones.lan.prefix | ipaddr(network_zones.lan.offsets[inventory_hostname]) | ipaddr('address/prefix') }}"
    gateway: "{{ network_zones.lan.gateway }}"
  interfaces:
  - *_network_primary_
  bonds:
  - name: bond0
    mode: 802.3ad
    slaves:
    - enp35s0
    - enp36s0
    options:
      miimon: 100
  vlans:
    bond0: "{{ __vmhost_bridge_interface_zones__['bond0'] | map('extract', network_zones) | map(attribute='vlan') | list }}"

apt_repo_components:
  - main
  - contrib
  - non-free ## for microcode updates


installer_lvm:
  vg: "{{ host_name }}"
  lv: installer
  size: 10G
  fs: ext4


cryptdisk_volumes:
  crypto-nvme0:
    passphrase: "{{ vault_cryptdisk_volumes['crypto-nvme0'].passphrase }}"
    device: /dev/disk/by-id/nvme-Samsung_SSD_970_PRO_512GB_S5JYNC0N310329Z-part4
  crypto-nvme1:
    passphrase: "{{ vault_cryptdisk_volumes['crypto-nvme1'].passphrase }}"
    device: /dev/disk/by-id/nvme-Samsung_SSD_970_PRO_512GB_S5JYNC0N310327Y-part4
  crypto-sata0:
    passphrase: "{{ vault_cryptdisk_volumes['crypto-sata0'].passphrase }}"
    device: /dev/disk/by-id/ata-WDC_WD102KRYZ-01A5AB0_VCG6HGTN
  crypto-sata1:
    passphrase: "{{ vault_cryptdisk_volumes['crypto-sata1'].passphrase }}"
    device: /dev/disk/by-id/ata-WDC_WD102KRYZ-01A5AB0_VCG6GT2N
  crypto-sata2:
    passphrase: "{{ vault_cryptdisk_volumes['crypto-sata2'].passphrase }}"
    device: /dev/disk/by-id/ata-WDC_WD102KRYZ-01A5AB0_VCG6A2UN


zfs_arc_size:
  min: "{{ 2 * 1024 * 1024 * 1024 }}"
  max: "{{ 24 * 1024 * 1024 * 1024 }}"

zfs_zpools:
  nvme:
    mountpoint: /srv/nvme
    create_vdevs: mirror /dev/mapper/crypto-nvme0 /dev/mapper/crypto-nvme1
  storage:
    mountpoint: /srv/storage
    create_vdevs: mirror /dev/mapper/crypto-sata0 /dev/mapper/crypto-sata1 /dev/mapper/crypto-sata2

zfs_sanoid_modules:
  nvme/vm:
    use_template: production
    recursive: yes
    process_children_only: yes
  storage:
    use_template: production
    recursive: yes
    process_children_only: yes