proxmox: standardize interface names and set up management VRF

No idea how badly this clashes with GUI configuration.

roles/proxmox/templates/10-network.rules.j2

@@ -0,0 +1,5 @@
+{% for name in hwaddr %}
+{% for addr in hwaddr[name] %}
+SUBSYSTEM=="net", ACTION=="add", ATTR{address}=="{{ addr }}", NAME="{{ name }}{{ loop.index0 }}"
+{% endfor %}
+{% endfor %}

roles/proxmox/templates/interfaces.j2

@@ -0,0 +1,16 @@
+auto lo
+iface lo inet loopback
+
+auto mgmt
+iface mgmt
+    address 127.0.0.1/8
+    address ::1/128
+    vrf-table auto
+
+auto {{ iface_mgmt }}
+iface {{ iface_mgmt }}
+    vrf mgmt
+    address {{ ansible_host }}/{{ mgmt_gw | ipaddr('prefix') }}
+    gateway {{ mgmt_gw | ipaddr('address') }}
+
+source /etc/network/interfaces.d/*

roles/proxmox/templates/sshd_config.mgmt.j2

@@ -0,0 +1,14 @@
+# This is for sshd in management VRF, for ansible and other not-really-OOB stuff.
+
+PidFile none
+UsePAM no
+
+# Only allow pubkey auth.
+KbdInteractiveAuthentication no
+PasswordAuthentication no
+PermitRootLogin prohibit-password
+
+# Disable what we can.
+AllowTcpForwarding no
+GatewayPorts no
+X11Forwarding no