Commit Graph

49 Commits

Author SHA1 Message Date
Gregor Michels 1a834de455 gateways: enable lldp 2023-01-08 06:28:47 +01:00
Gregor Michels 2d85ba5226 accesspoints: enable lldp 2023-01-08 05:58:50 +01:00
Gregor Michels e3d8369768 Revert "hotfix for adp: also emit backoffice wifi in tent 1"
This reverts commit d808775f39.
2022-12-29 15:38:24 +01:00
Gregor Michels d808775f39 hotfix for adp: also emit backoffice wifi in tent 1 2022-12-23 16:09:37 +01:00
Gregor Michels 0db1eb2c6a accesspoints: fix default dns and gateway
forgot to quote the ips

Fixes: bf1c7bd3ab
2022-12-23 16:06:15 +01:00
Gregor Michels 51a8de4299 ffl-ans-gw-core01: move offloader network hook into /usr/lib 2022-12-23 13:30:03 +01:00
Gregor Michels 1ea236b206 ffl-ans-gw-core01: finally put offloader vm setup into ansible 2022-12-23 13:22:38 +01:00
Gregor Michels c0f8ec9b6e monitoring: grafana: replace dashboard for adp with a generic one for the two camps 2022-11-23 01:06:00 +01:00
Gregor Michels 64721148d8 monitoring: default to "public" snmp community 2022-11-21 03:00:57 +01:00
Gregor Michels e3b111f2c7 monitoring: monitor switches in the ANS via snmp 2022-11-21 02:58:13 +01:00
Gregor Michels ffb7617db8 monitoring: add 'location' info 2022-11-19 01:46:52 +01:00
Gregor Michels 8389a18488 monitoring: move prometheus stack onto eae-adp-jump01
to be able to also monitor the new site.

custom grafana dashboard broke while transfering stack.
will fix next
2022-11-17 00:35:57 +01:00
Gregor Michels 258355170b gw-core01: (adp) allow clients network to route into all other networks 2022-11-16 23:25:59 +01:00
Gregor Michels d4b0e622ef gateways: fw: allow prometheus on backbone 2022-11-16 22:54:37 +01:00
Gregor Michels f791ad76ab accesspoints: expand backoffice wifis to all office locations 2022-11-14 01:59:22 +01:00
Gregor Michels bf1c7bd3ab accesspoints: fix gateway and dns for ans aps 2022-11-14 01:35:23 +01:00
Gregor Michels e110320999 accesspoints: added toggle to disable public wifi
also disabled public wifi on ANS till offloader works
2022-11-12 21:38:27 +01:00
Gregor Michels 82a50739b1 ffl-ans-gw-core01: activate backbone connection 2022-11-10 02:21:22 +01:00
Gregor Michels 3c69441681 fix wrong port for wg2
Fixes: 8d4fc76a81
2022-11-10 02:20:44 +01:00
Gregor Michels 8d4fc76a81 playbook_provision_backbone: configure backbone for ffl-ans-gw-core01 2022-11-10 02:06:52 +01:00
Gregor Michels 4afda5bdd9 add ffl-ans-gw-core01 2022-11-10 01:57:56 +01:00
Gregor Michels 02115216d6 playbook_provision_gateway: move config files into host specific dir 2022-11-10 01:30:26 +01:00
Gregor Michels 2cc3c9457a new playbook: playbook_create_switch_configs_stock for ans
creates local configs files for the stock firmware on the zyxel switches

assumes that all switches have the same config (except admin pw and ip)
2022-11-10 00:29:44 +01:00
Gregor Michels 3a03ff7cdd wifi: site specific settings 2022-11-09 00:21:17 +01:00
Gregor Michels a038b5e5ff move switches into the correct timezone 2022-11-03 00:18:39 +01:00
Gregor Michels 166a2d33b8 new playbook 'playbook_provision_switches'
to finally provision switches via ansible.

Because we cannot fit python onto the switches we are using the awesome
ansible module/role from gekmihesg to still be able to automate this :)

https://github.com/gekmihesg/ansible-openwrt
2022-11-03 00:15:05 +01:00
Gregor Michels df6a5a93ef monitoring: remove non-dns e2e test 2022-10-19 02:01:08 +02:00
Gregor Michels 466fefeb8d gw-core01: reenable traffic laundering for the public wifi
Fixes: 6297531dfd
2022-10-19 01:47:30 +02:00
Gregor Michels 6297531dfd gw-core01: temporarily disable traffic laundering for the public wifi
because the vpn connection stopped handshaking yesterday
2022-10-18 12:58:19 +02:00
Gregor Michels bb9f502eb9 accesspoints: limit backoffice wifi to aps inside office containers 2022-10-11 01:29:49 +02:00
Gregor Michels 71965a2412 gw-core01: increase mtu of launder vpn (used for the public wifi)
apparently the LTE connection on site actually get's an MTU of 1500

`traceroute -n --mtu <destination>` confirmed that
2022-10-01 23:30:46 +02:00
Gregor Michels 05228f19cf gw-core01: persist dhcp leases
/etc/dhcp.leases is not saved with `sysupgrade -b`
2022-10-01 20:47:01 +02:00
Gregor Michels e7054c1b64 gw-core01: prepare configs for platform change
replace `Ubiquiti EdgeRouter X` with an `Sophos SG-125r2`
2022-09-28 01:54:16 +02:00
Gregor Michels 3664b97ab1 accesspoints: fix timezone 2022-09-26 01:25:20 +02:00
Gregor Michels c311163884 playbook_provision_accesspoints: change vcs layout
* replace whole config files (instead of adding lines to existing files)
* move config tree beneath `templates/accesspoints`
* just like `gw-core01`
2022-09-26 00:59:49 +02:00
Gregor Michels c00669664e gw-core01: fix timezone 2022-09-26 00:34:07 +02:00
Gregor Michels 5461ae6e93 new playbook 'playbook_provision_gateway.yml'
finally move configuration of `gw-core01` into vcs
2022-09-26 00:34:06 +02:00
Gregor Michels 6bcefd4955 incident 017: add another icmp probe `mon-e2e-wan01` 2022-09-15 02:02:22 +02:00
Gregor Michels 01c3d3f300 grafana: filter jobs for `available devices` widget on public dashboard
ie. hiding the new blackbox jobs

also correct threshold for vms on `available devices` widget
2022-09-14 03:46:29 +02:00
Gregor Michels f0115625f6 monitoring: add end to end tests to monitor internet reachability
via imcp (blackbox exporter)

There are two exporters.
One lives inside `monitoring01` and uses the "normal" route into the
internet without a vpn (job: `e2e_default_v4`).

The other one lives inside `mon-e2e-clients01` and routes into the
internet via the vpn (job: `e2e_clients_v4`).
2022-09-14 03:12:22 +02:00
Gregor Michels 67ebf9b9bb monitoring: automagically provision grafana 2022-09-04 18:56:20 +02:00
Gregor Michels b96fa8542c add backoffice wifi 2022-08-22 15:53:37 +02:00
Gregor Michels f01e35c531 monitoring: fix prometheus instance generation from inventory
no idea why it broke
2022-07-13 01:38:23 +02:00
Gregor Michels fb8b843489 monitoring: configure alertmanager to send mails 2022-07-13 01:29:46 +02:00
Gregor Michels 5a21b2cd88 monitoring: prometheus: add simple alerting rule 2022-07-13 01:27:07 +02:00
Gregor Michels 8969c14c64 add playbook_provision_monitoring 2022-07-03 02:09:02 +02:00
Gregor Michels 2de716a405 poc for tunnel provisioning 2022-06-28 21:59:22 +02:00
Gregor Michels 25e7a4c14f playbook: provision aps: cleanup 2022-06-28 21:58:02 +02:00
Gregor Michels 71f4ee9c5f initial commit 2022-06-22 02:05:55 +02:00