rc/network
2
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
network/roles/firewall/templates
History
Timotej Lazar db397cb2b1 exit: store VLAN interface addresses in NetBox 
… instead of generating them from prefixes. A NetBox script can be
used to create and configure all necessary data for a new VLAN.

Instead of VLAN roles “inside" and “outside” we now create separate
VRFs for inside VLANs to match the actual exit/firewall configuration.
The “outside” VRF is for all VLANs that are directly accessible from
the internet.
2024-04-10 14:03:50 +02:00
..
conntrackd.conf.j2 Initial commit, squashed 2023-12-18 12:55:47 +01:00
fabric.intf.j2 Initial commit, squashed 2023-12-18 12:55:47 +01:00
frr.conf.j2 exit: store VLAN interface addresses in NetBox 2024-04-10 14:03:50 +02:00
interfaces.j2 Initial commit, squashed 2023-12-18 12:55:47 +01:00
interfaces.nft.j2 Initial commit, squashed 2023-12-18 12:55:47 +01:00
mactab.j2 fabric: consolidate interface templates 2024-02-27 13:35:29 +01:00
mgmt.intf.j2 firewall: disable forwarding for mgmt interfaces in if-pre-up 2024-01-30 13:11:35 +01:00
networks.nft.j2 firewall: fix duplicate space in template 2024-04-05 12:00:55 +02:00
nftables.nft.j2 firewall: accept VPN connections from inside also 2024-04-08 15:03:29 +02:00
sysctl.conf.j2 firewall: disable forwarding for mgmt interfaces in if-pre-up 2024-01-30 13:11:35 +01:00
wg.intf.j2 firewall: set IPv6 address for wireguard interface 2023-12-18 12:55:50 +01:00