Freifunk-Leipzig
/
eae-am-deutschen-platz
13
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
docs, config and ansible stuff for the "Erstaufnahmeeinrichtung Am Deutschen Platz"
36 Commits 4 Branches 0 Tags 2.3 MiB
Jinja 63.8%
Lua 20.2%
Shell 16%
Go to file
Gregor Michels abad2956b6 add venv for ansible 2022-07-03 01:24:40 +02:00
ansible-environment add venv for ansible 2022-07-03 01:24:40 +02:00
documentation documentation: ap-ac7c -> ap-1a38 2022-07-03 01:00:08 +02:00
files pass: add clarifying notes about gpg keys 2022-07-01 02:24:06 +02:00
password-store pass: add @katzenparadoxon 2022-07-01 02:24:00 +02:00
templates poc for tunnel provisioning 2022-06-28 21:59:22 +02:00
.gitignore ansible: cache facts 2022-07-01 01:39:54 +02:00
README.md README: fix markup 2022-07-01 02:35:27 +02:00
ansible-environment.txt add venv for ansible 2022-07-03 01:24:40 +02:00
ansible.cfg ansible: cache facts 2022-07-01 01:39:54 +02:00
environment replace pass wrapper with environment file 2022-06-26 23:17:20 +02:00
inventory accesspoints: put every ap on a different channel 2022-07-03 00:43:30 +02:00
playbook_create_ssh_config.yml playbook_create_ssh_config: make jumphosts possible 2022-06-30 01:41:11 +02:00
playbook_distribute_authorized_keys.yml playbook_distribute_authorized_keys: make available on all platforms! 2022-06-30 02:38:24 +02:00
playbook_provision_accesspoints.yml accesspoints: also install iwinfo 2022-07-03 00:43:26 +02:00
playbook_provision_backbone.yml poc for tunnel provisioning 2022-06-28 21:59:22 +02:00
playbook_provision_eap-adp-jump01.yml add vm eap-adp-jump01 2022-06-28 00:11:01 +02:00

README.md

Freifunk Leipzig - Erstaufnahme Einrichtung - Am Deutschen Platz

This repo contains the config and documentation for our installation at the "Erstaufnahme Einrichtung - Am Deutschen Platz"

more documentation / information will follow

Admin Guide

requirements:

  • ansible
  • pass

Password Manager

  1. import all gpg keys (only on first use or new admin - all keys need to be trusted - use --edit-key to edit the trust level):
user@freifunk-admin:~/ffl-eae-adp/files/gpg$ gpg --import *
gpg: key F937CB4882C16136: "hirnpfirsich@ffl-eae-adp-password" not changed
gpg: key 2438B8ADFDF45447: 1 signature not checked due to a missing key
gpg: key 2438B8ADFDF45447: "Alexander Böhm <alexander.boehm@malbolge.net>" not changed
gpg: Total number processed: 2
gpg:              unchanged: 2
user@freifunk-admin:~/ffl-eae-adp/files/gpg$
  1. source environment (on every new shell):
user@freifunk-admin:~/ffl-eae-adp$ . environment
  1. use :)
user@freifunk-admin:~/ffl-eae-adp$ pass
Password Store
├── accesspoints
│   ├── ap-0b99
│   ├── ap-1a38
│   ├── ap-2bbf
│   ├── ap-8f39
[...]
user@freifunk-admin:~/ffl-eae-adp

SSH

use playbook_create_ssh_config.yml to generate an ssh_config file that gets linked into your ssh_config. optionally specify a jumphost (ie. eae-adp-jump01)

user@freifunk-admin:~/ffl-eae-adp$ ansible-playbook -e jumphost=eae-adp-jump01 playbook_create_ssh_config.yml 

PLAY [generate ssh_config] ******************************************************************************************************************************************************************************************************

TASK [generate ssh_config file] *************************************************************************************************************************************************************************************************
changed: [localhost]

TASK [include custom ssh_config] ************************************************************************************************************************************************************************************************
ok: [localhost]

PLAY RECAP **********************************************************************************************************************************************************************************************************************
localhost                  : ok=2    changed=1    unreachable=0    failed=0    skipped=0    rescued=0    ignored=0   

user@freifunk-admin:~/ffl-eae-adp$ ssh gw-core01 uptime
 23:54:52 up  6:49,  load average: 0.05, 0.01, 0.00
user@freifunk-admin:~/ffl-eae-adp$

Links