Gregor Michels
14df3e24df
gw-core01: fix broken mgmt tunnel
2023-03-22 23:26:03 +01:00
Gregor Michels
a236643969
gw-core01: fix dns issues
...
gigacube could not handle amount of dns queries.
* move dns to quad9 and cloudflare
* increase size of dns cache
* increase amount of concurrent dns queries
2023-03-08 00:11:54 +01:00
Gregor Michels
b621e8dd48
grafana: put airtime into overview dashboard
2023-03-08 00:02:37 +01:00
Gregor Michels
72df3338d3
monitoring: nice labels for openwrt switches
...
* keep instance label
* add site and location labels
2023-03-07 23:44:19 +01:00
Gregor Michels
8fa87485ff
monitoring: nice instance labels for snmp switches
2023-03-07 23:43:44 +01:00
Gregor Michels
7b452966d2
ffl-ans-gw-core01: prepare eth2 and eth3 for hardware ffl offloader
...
eth2: WAN
eth3: CLIENTS
2023-03-07 23:33:48 +01:00
Gregor Michels
68ee430145
gw-core01: change mullvad account
2023-03-07 23:24:01 +01:00
Gregor Michels
3e7178b5ec
grafana: accomodations overview: dynamically build site list
2023-01-18 01:20:50 +01:00
Gregor Michels
473d7aa05a
sax-rgs-gw-core01: add laundering client network
...
v4 works, v6 is still a work in progress
launder:
* v4 through mullvad
* v6 through mowoe
2023-01-18 00:35:25 +01:00
Gregor Michels
c7989547aa
sax-rgs-gw-core01: network fix indentation in backoffice config
2023-01-18 00:34:18 +01:00
Gregor Michels
767f76e13e
sax-rgs-gw-core01: firewall allow ping (v4/6) from everywhere
2023-01-18 00:15:12 +01:00
Gregor Michels
fe220194f9
sax-rgs-gw-core01: configure port for backoffice printer
2023-01-18 00:09:52 +01:00
Gregor Michels
77454046b8
sax-rgs-gw-core01: configure backbone
2023-01-17 23:54:07 +01:00
Gregor Michels
a837a2b916
playbook_provision_backbone: configure backbone for sax-rgs-gw-core01
2023-01-17 23:54:07 +01:00
Gregor Michels
fe8d3b5dec
sax-rgs-gw-core01: add config tree
2023-01-17 23:54:07 +01:00
Gregor Michels
718bdb4594
accesspoints: generify wifi config
...
be able to support different ap hardware (wifi wise)
2023-01-17 23:50:49 +01:00
Gregor Michels
c40e49d645
playbook_create_switch_configs_stock: add config template for s2800s-8t2f-p from fs.com
2023-01-10 02:38:31 +01:00
Gregor Michels
f832189278
gateways: move some configs into base
...
* system
* lldpd
* prometheus-node-exporter-lua
* frr: daemons
2023-01-10 00:54:27 +01:00
Gregor Michels
1a834de455
gateways: enable lldp
2023-01-08 06:28:47 +01:00
Gregor Michels
2d85ba5226
accesspoints: enable lldp
2023-01-08 05:58:50 +01:00
Gregor Michels
e3d8369768
Revert "hotfix for adp: also emit backoffice wifi in tent 1"
...
This reverts commit d808775f39
.
2022-12-29 15:38:24 +01:00
Gregor Michels
d808775f39
hotfix for adp: also emit backoffice wifi in tent 1
2022-12-23 16:09:37 +01:00
Gregor Michels
0db1eb2c6a
accesspoints: fix default dns and gateway
...
forgot to quote the ips
Fixes: bf1c7bd3ab
2022-12-23 16:06:15 +01:00
Gregor Michels
51a8de4299
ffl-ans-gw-core01: move offloader network hook into /usr/lib
2022-12-23 13:30:03 +01:00
Gregor Michels
1ea236b206
ffl-ans-gw-core01: finally put offloader vm setup into ansible
2022-12-23 13:22:38 +01:00
Gregor Michels
c0f8ec9b6e
monitoring: grafana: replace dashboard for adp with a generic one for the two camps
2022-11-23 01:06:00 +01:00
Gregor Michels
64721148d8
monitoring: default to "public" snmp community
2022-11-21 03:00:57 +01:00
Gregor Michels
e3b111f2c7
monitoring: monitor switches in the ANS via snmp
2022-11-21 02:58:13 +01:00
Gregor Michels
ffb7617db8
monitoring: add 'location' info
2022-11-19 01:46:52 +01:00
Gregor Michels
8389a18488
monitoring: move prometheus stack onto eae-adp-jump01
...
to be able to also monitor the new site.
custom grafana dashboard broke while transfering stack.
will fix next
2022-11-17 00:35:57 +01:00
Gregor Michels
258355170b
gw-core01: (adp) allow clients network to route into all other networks
2022-11-16 23:25:59 +01:00
Gregor Michels
d4b0e622ef
gateways: fw: allow prometheus on backbone
2022-11-16 22:54:37 +01:00
Gregor Michels
f791ad76ab
accesspoints: expand backoffice wifis to all office locations
2022-11-14 01:59:22 +01:00
Gregor Michels
bf1c7bd3ab
accesspoints: fix gateway and dns for ans aps
2022-11-14 01:35:23 +01:00
Gregor Michels
e110320999
accesspoints: added toggle to disable public wifi
...
also disabled public wifi on ANS till offloader works
2022-11-12 21:38:27 +01:00
Gregor Michels
82a50739b1
ffl-ans-gw-core01: activate backbone connection
2022-11-10 02:21:22 +01:00
Gregor Michels
3c69441681
fix wrong port for wg2
...
Fixes: 8d4fc76a81
2022-11-10 02:20:44 +01:00
Gregor Michels
8d4fc76a81
playbook_provision_backbone: configure backbone for ffl-ans-gw-core01
2022-11-10 02:06:52 +01:00
Gregor Michels
4afda5bdd9
add ffl-ans-gw-core01
2022-11-10 01:57:56 +01:00
Gregor Michels
02115216d6
playbook_provision_gateway: move config files into host specific dir
2022-11-10 01:30:26 +01:00
Gregor Michels
2cc3c9457a
new playbook: playbook_create_switch_configs_stock for ans
...
creates local configs files for the stock firmware on the zyxel switches
assumes that all switches have the same config (except admin pw and ip)
2022-11-10 00:29:44 +01:00
Gregor Michels
3a03ff7cdd
wifi: site specific settings
2022-11-09 00:21:17 +01:00
Gregor Michels
a038b5e5ff
move switches into the correct timezone
2022-11-03 00:18:39 +01:00
Gregor Michels
166a2d33b8
new playbook 'playbook_provision_switches'
...
to finally provision switches via ansible.
Because we cannot fit python onto the switches we are using the awesome
ansible module/role from gekmihesg to still be able to automate this :)
https://github.com/gekmihesg/ansible-openwrt
2022-11-03 00:15:05 +01:00
Gregor Michels
df6a5a93ef
monitoring: remove non-dns e2e test
2022-10-19 02:01:08 +02:00
Gregor Michels
466fefeb8d
gw-core01: reenable traffic laundering for the public wifi
...
Fixes: 6297531dfd
2022-10-19 01:47:30 +02:00
Gregor Michels
6297531dfd
gw-core01: temporarily disable traffic laundering for the public wifi
...
because the vpn connection stopped handshaking yesterday
2022-10-18 12:58:19 +02:00
Gregor Michels
bb9f502eb9
accesspoints: limit backoffice wifi to aps inside office containers
2022-10-11 01:29:49 +02:00
Gregor Michels
71965a2412
gw-core01: increase mtu of launder vpn (used for the public wifi)
...
apparently the LTE connection on site actually get's an MTU of 1500
`traceroute -n --mtu <destination>` confirmed that
2022-10-01 23:30:46 +02:00
Gregor Michels
05228f19cf
gw-core01: persist dhcp leases
...
/etc/dhcp.leases is not saved with `sysupgrade -b`
2022-10-01 20:47:01 +02:00