--- install: cloud: credentials: "{{ vault_hroot_robot_account }}" server_name: "{{ host_name }}" disks: layout: nvme_raid root_lvm_size: 10G network: {} base_intel_nic_stability_fix: true ssh_users_root: - equinox - dan apt_repo_components: - main - contrib ## for zfs - non-free ## for microcode updates cryptdisk_volumes: crypto-nvme0: passphrase: "{{ vault_cryptdisk_volumes['crypto-nvme0'].passphrase }}" device: /dev/disk/by-id/nvme-eui.0025388291b201dc-part3 crypto-nvme1: passphrase: "{{ vault_cryptdisk_volumes['crypto-nvme1'].passphrase }}" device: /dev/disk/by-id/nvme-eui.0025388291b201cb-part3 zfs_arc_size: min: "{{ 2 * 1024 * 1024 * 1024 }}" max: "{{ 8 * 1024 * 1024 * 1024 }}" zfs_zpools: storage: mountpoint: /srv/storage create_vdevs: mirror /dev/mapper/crypto-nvme0 /dev/mapper/crypto-nvme1 zfs_sanoid_modules: storage/vm: use_template: production recursive: yes process_children_only: yes storage/vm/sk-testvm: use_template: ignore recursive: yes vm_host: network: dns: - 213.133.100.100 - 213.133.98.98 - 213.133.99.99 bridges: public: prefix: 192.168.250.254/24 offsets: sk-torrent: 136 # emc-master: 137 lw-master: 137 ele-gwhetzner: 138 ch-mimas: 142 sk-testvm: 253 nat: yes overlay: prefix: 178.63.180.136/29 offsets: sk-torrent: 0 # emc-master: 1 lw-master: 1 ele-gwhetzner: 2 ch-mimas: 6 sk-testvm: 7 zfs: default: pool: storage name: vm