Gregor Michels
14df3e24df
gw-core01: fix broken mgmt tunnel
2023-03-22 23:26:03 +01:00
Gregor Michels
a236643969
gw-core01: fix dns issues
...
gigacube could not handle amount of dns queries.
* move dns to quad9 and cloudflare
* increase size of dns cache
* increase amount of concurrent dns queries
2023-03-08 00:11:54 +01:00
Gregor Michels
7b452966d2
ffl-ans-gw-core01: prepare eth2 and eth3 for hardware ffl offloader
...
eth2: WAN
eth3: CLIENTS
2023-03-07 23:33:48 +01:00
Gregor Michels
68ee430145
gw-core01: change mullvad account
2023-03-07 23:24:01 +01:00
Gregor Michels
473d7aa05a
sax-rgs-gw-core01: add laundering client network
...
v4 works, v6 is still a work in progress
launder:
* v4 through mullvad
* v6 through mowoe
2023-01-18 00:35:25 +01:00
Gregor Michels
c7989547aa
sax-rgs-gw-core01: network fix indentation in backoffice config
2023-01-18 00:34:18 +01:00
Gregor Michels
767f76e13e
sax-rgs-gw-core01: firewall allow ping (v4/6) from everywhere
2023-01-18 00:15:12 +01:00
Gregor Michels
fe220194f9
sax-rgs-gw-core01: configure port for backoffice printer
2023-01-18 00:09:52 +01:00
Gregor Michels
77454046b8
sax-rgs-gw-core01: configure backbone
2023-01-17 23:54:07 +01:00
Gregor Michels
fe8d3b5dec
sax-rgs-gw-core01: add config tree
2023-01-17 23:54:07 +01:00
Gregor Michels
f832189278
gateways: move some configs into base
...
* system
* lldpd
* prometheus-node-exporter-lua
* frr: daemons
2023-01-10 00:54:27 +01:00
Gregor Michels
1a834de455
gateways: enable lldp
2023-01-08 06:28:47 +01:00
Gregor Michels
51a8de4299
ffl-ans-gw-core01: move offloader network hook into /usr/lib
2022-12-23 13:30:03 +01:00
Gregor Michels
1ea236b206
ffl-ans-gw-core01: finally put offloader vm setup into ansible
2022-12-23 13:22:38 +01:00
Gregor Michels
e3b111f2c7
monitoring: monitor switches in the ANS via snmp
2022-11-21 02:58:13 +01:00
Gregor Michels
258355170b
gw-core01: (adp) allow clients network to route into all other networks
2022-11-16 23:25:59 +01:00
Gregor Michels
d4b0e622ef
gateways: fw: allow prometheus on backbone
2022-11-16 22:54:37 +01:00
Gregor Michels
82a50739b1
ffl-ans-gw-core01: activate backbone connection
2022-11-10 02:21:22 +01:00
Gregor Michels
4afda5bdd9
add ffl-ans-gw-core01
2022-11-10 01:57:56 +01:00
Gregor Michels
02115216d6
playbook_provision_gateway: move config files into host specific dir
2022-11-10 01:30:26 +01:00
Gregor Michels
466fefeb8d
gw-core01: reenable traffic laundering for the public wifi
...
Fixes: 6297531dfd
2022-10-19 01:47:30 +02:00
Gregor Michels
6297531dfd
gw-core01: temporarily disable traffic laundering for the public wifi
...
because the vpn connection stopped handshaking yesterday
2022-10-18 12:58:19 +02:00
Gregor Michels
71965a2412
gw-core01: increase mtu of launder vpn (used for the public wifi)
...
apparently the LTE connection on site actually get's an MTU of 1500
`traceroute -n --mtu <destination>` confirmed that
2022-10-01 23:30:46 +02:00
Gregor Michels
05228f19cf
gw-core01: persist dhcp leases
...
/etc/dhcp.leases is not saved with `sysupgrade -b`
2022-10-01 20:47:01 +02:00
Gregor Michels
e7054c1b64
gw-core01: prepare configs for platform change
...
replace `Ubiquiti EdgeRouter X` with an `Sophos SG-125r2`
2022-09-28 01:54:16 +02:00
Gregor Michels
c00669664e
gw-core01: fix timezone
2022-09-26 00:34:07 +02:00
Gregor Michels
5461ae6e93
new playbook 'playbook_provision_gateway.yml'
...
finally move configuration of `gw-core01` into vcs
2022-09-26 00:34:06 +02:00