Timotej Lazar
|
5762236ac2
|
ceph: fix nftables management rule
The mgmt VRF might not exist yet when nftables rules are loaded, so
use iifname instead of iif for dynamic interface lookup.
|
2024-05-09 12:30:42 +02:00 |
|
Timotej Lazar
|
1a4652fd87
|
ceph: parametrize cephadm checksum
|
2024-04-27 10:44:58 +02:00 |
|
Timotej Lazar
|
8be55c2bde
|
ceph: set up firewall
Still need to drop the hardcoded allowed set.
|
2024-04-05 06:12:58 +02:00 |
|
Timotej Lazar
|
0c063a017b
|
ceph: allow some ICMP
|
2024-03-14 14:34:44 +01:00 |
|
Timotej Lazar
|
ce7903e43a
|
ceph: improve cluster setup
Remove separate NetBox lookups. Explicitly allow connections between
cluster nodes. Tigthen temporary allowed IPv6 ranges.
|
2024-03-01 08:45:51 +01:00 |
|
Timotej Lazar
|
c395fe22c7
|
ceph: allow connections from more addresses
Should unhardcode this at some point.
|
2024-01-17 19:19:55 +01:00 |
|
Timotej Lazar
|
5038411af3
|
Add ceph role
Just prepares the servers, all management is then done through cephadm.
|
2023-11-20 13:04:11 +01:00 |
|