WIP: ap01: towards our VLAN model #181

Draft

rlahfa wants to merge 7 commits from ap01-vlan into main

pull from: ap01-vlan

merge into: DGNum:main

DGNum:main

DGNum:npins-update

DGNum:search-infra

DGNum:tower01

DGNum:cache_shell

DGNum:django-backups

DGNum:hypervisor

DGNum:pretalx

DGNum:cas-redirection

DGNum:hypervisors

DGNum:meta_rework

DGNum:sleep-uk

DGNum:reuse

DGNum:doc

DGNum:mdDoc-removal

DGNum:collabora-online

DGNum:logrotate

DGNum:cgroup-exporting

DGNum:liminix-test

DGNum:crabfit-padding

DGNum:generalized-evaluation

DGNum:colmena-liminx-ng

DGNum:dns-lab

DGNum:nixpkgs--

DGNum:lix-patched

DGNum:web01

DGNum:declarative-buckets

DGNum:victoria-metrics

DGNum:mattermost

DGNum:init-dgnum-page

DGNum:takumi-can-do-ollama

DGNum:ds-fr

DGNum:colmena-liminix

Conversation 0 Commits 7 Files changed 8 +143 -54

rlahfa commented 2024-12-08 23:21:29 +01:00

Owner

Copy link

This PR aims to bring support for VLAN-based provisionnement.

There's one imperfection: this is taking much more closure size on the target system:

root@ap01-prototype # df
Filesystem           1024-blocks    Used Available Use% Mounted on
ubi0:rootfs              24884     23420      1464  94% /persist
ubi0:rootfs              24884     23420      1464  94% /nix
dev                     124124         0    124124   0% /dev
tmpfs                   125428       488    124940   0% /run
none                    125428         0    125428   0% /tmp

This PR cannot be merged until we cut down on the size which was introduced by iproute2, which means we just need a neat way to perform the vlan_filtering modification without bringing iproute2 in the play.

This PR aims to bring support for VLAN-based provisionnement. There's one imperfection: this is taking much more closure size on the target system: ``` root@ap01-prototype # df Filesystem 1024-blocks Used Available Use% Mounted on ubi0:rootfs 24884 23420 1464 94% /persist ubi0:rootfs 24884 23420 1464 94% /nix dev 124124 0 124124 0% /dev tmpfs 125428 488 124940 0% /run none 125428 0 125428 0% /tmp ``` This PR cannot be merged until we cut down on the size which was introduced by iproute2, which means we just need a neat way to perform the vlan_filtering modification without bringing iproute2 in the play.

rlahfa added 2 commits 2024-12-08 23:21:30 +01:00

feat(machines/ap01): add default VLAN and admin VLAN ... ccd89b070c

Put DHCPv4 on the default VLAN now.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

feat(machines/ap01/recovery): fix levitation dependencies ... da318b17aa

We should use the right DHCPv4.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

rlahfa added 2 commits 2024-12-08 23:41:51 +01:00

feat(machines/ap01/recovery): pass the parent hostname with live indicator ... 6a4fd0ea36

This makes the experience nicer.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

feat(scripts/liminix): make it easy to extract the firmware part of the Zyxel NWA FIT image ... 0cbaf39aa5

This is useful when reflashing the system from scratch in the levitation
mode.

Note that doing this will reset the UBI counter to zero, this is bad for
wear leveling.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

rlahfa added 2 commits 2024-12-08 23:49:25 +01:00

feat(scripts/liminix): add a basic liminix rebuild ... 385dd57cad

This script requires manual efforts on the operator end not to fuck up
too hard.

This adds min-copy-closure and min-garbage-collect to the development
shell.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

feat(devshell): add tufted, a Fennel TFTP server ... 5871782d52

This is useful for in-memory testing of APs connected over a simple
network.

In the future, we may use a TFTP server for field recovery by
configuring all our APs to use a certain known IPv4 address for the TFTP
server and ensuring that we always have a router on the untagged area
answering TFTP requests to reboot an AP in a known configuration,
without any serial console attached.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

rlahfa force-pushed ap01-vlan from 5871782d52 to 14f38b02e2 2024-12-08 23:51:56 +01:00 Compare

rlahfa added 1 commit 2024-12-08 23:52:43 +01:00

fix(machines/ap01/lan): use untagged VLAN ID, aka 1 and not 0 ... 8bb1ddc953

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>

rlahfa force-pushed ap01-vlan from 8bb1ddc953 to 9d5d75a427 2024-12-09 01:30:00 +01:00 Compare

rlahfa added the

awaiting

awaiting-author

label 2024-12-15 20:22:06 +01:00

All checks were successful

Hide all checks

Check meta / check_dns (pull_request) Successful in 18s

Required

Details

Run pre-commit on all files / check (push) Successful in 25s

Required

Details

Check meta / check_meta (pull_request) Successful in 17s

Required

Details

Check workflows / check_workflows (pull_request) Successful in 21s

Required

Details

Build all the nodes / bridge01 (pull_request) Successful in 1m26s

Required

Details

Build all the nodes / ap01 (pull_request) Successful in 2m54s

Required

Details

Build all the nodes / compute01 (pull_request) Successful in 1m51s

Required

Details

Build all the nodes / geo01 (pull_request) Successful in 1m24s

Required

Details

Build all the nodes / geo02 (pull_request) Successful in 1m24s

Required

Details

Build all the nodes / rescue01 (pull_request) Successful in 1m51s

Required

Details

Build all the nodes / storage01 (pull_request) Successful in 1m47s

Required

Details

Build all the nodes / vault01 (pull_request) Successful in 1m40s

Required

Details

Build all the nodes / web01 (pull_request) Successful in 2m13s

Required

Details

Build all the nodes / web02 (pull_request) Successful in 1m30s

Required

Details

Run pre-commit on all files / check (pull_request) Successful in 25s

Required

Details

Build all the nodes / web03 (pull_request) Successful in 1m38s

Required

Details

This pull request is marked as a work in progress.

This branch is out-of-date with the base branch

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin ap01-vlan:ap01-vlan

git checkout ap01-vlan

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

awaiting

awaiting-author

Awaiting for the author interaction (e.g. QA/confirmation/final merge)

  

awaiting

awaiting-reviewer

Awaiting for a privileged reviewer to approve this PR

  

bug

Something is not working

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

help wanted

Need some help

  

invalid

Something is wrong

  

question

More information is needed

  

wontfix

This won't be fixed

No labels

awaiting

awaiting-author

awaiting

awaiting-reviewer

bug

duplicate

enhancement

help wanted

invalid

question

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: DGNum/infrastructure#181

No description provided.