cst1/infrastructure
1
0
Fork 0
forked from DGNum/infrastructure
Code Pull requests Activity

feat(netconf/netcore01): init

Browse source
This commit is contained in:
catvayor 2025-01-31 15:39:28 +01:00 committed by mdebray
parent d2603b38d8
commit 304103af3a
3 changed files with 92 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
.forgejo/workflows/eval-nodes.yaml
View file

@ -111,6 +111,17 @@ jobs:
STORE_USER: admin STORE_USER: admin
name: Build and cache netaccess01 name: Build and cache netaccess01
run: nix-shell -A eval-nodes --run cache-node run: nix-shell -A eval-nodes --run cache-node
netcore01:
runs-on: nix
steps:
- uses: actions/checkout@v3
- env:
BUILD_NODE: netcore01
STORE_ENDPOINT: https://tvix-store.dgnum.eu/infra-signing/
STORE_PASSWORD: ${{ secrets.STORE_PASSWORD }}
STORE_USER: admin
name: Build and cache netcore01
run: nix-shell -A eval-nodes --run cache-node
netcore02: netcore02:
runs-on: nix runs-on: nix
steps: steps:

55
machines/netconf/netcore01.nix Normal file
View file

@ -0,0 +1,55 @@
# SPDX-FileCopyrightText: 2025 Lubin Bailly <lubin.bailly@dgnum.eu>
#
# SPDX-License-Identifier: EUPL-1.2
let
#TODO: meta
vlansPlan = {
"uplink-cri".id = 223;
"admin-core" = {
id = 3000;
l3-interface = "irb.0";
};
"admin-ap".id = 3001;
"users".id-list = [
{
begin = 3045;
end = 4094;
}
];
"ap-staging".id = 2000;
"hypervisor".id = 2001;
};
in
{
vlans = vlansPlan;
dgn-hardware.model = "EX2300-48P";
dgn-interfaces =
let
hypervisor.ethernet-switching = {
interface-mode = "access";
vlans = [ "hypervisor" ];
};
in
{
"xe-0/2/0".ethernet-switching = {
interface-mode = "trunk";
vlans = [ "all" ];
};
"ge-0/0/0" = hypervisor;
"ge-0/0/1" = hypervisor;
"ge-0/0/2" = hypervisor;
"ge-0/0/3" = hypervisor;
"ge-0/0/4" = hypervisor;
"ge-0/0/5" = hypervisor;
"ge-0/0/6" = hypervisor;
"ge-0/0/7" = hypervisor;
# management
"me0".inet.addresses = [ "192.168.2.2/24" ];
"irb".inet6.addresses = [ "fd26:baf9:d250:8000::100f/64" ];
};
}

26
meta/nodes/netconf.nix
View file

@ -2,6 +2,31 @@
# #
# SPDX-License-Identifier: EUPL-1.2 # SPDX-License-Identifier: EUPL-1.2
{ {
netcore01 = {
site = "pot01";
hashedPassword = "$6$BKetIIfT$JVyE0B7F4O.fJwQFu5jVrVExAZROrEMLW5HkDkhjMShJ9cRIgxSm2VM9OThDowsnLmAewqDN7eAY.EQt4UR4U0";
stateVersion = null;
adminGroups = [ "fai" ];
deployment = {
targetHost = "fd26:baf9:d250:8000::100f";
sshOptions = [
"-J"
"root@vault01.hyp01.infra.dgnum.eu"
"-p"
"830"
];
};
nixpkgs = {
version = "24.05"; # FIXME: meaningless
system = "netconf";
};
};
netcore02 = { netcore02 = {
site = "hyp01"; site = "hyp01";
@ -26,6 +51,7 @@
system = "netconf"; system = "netconf";
}; };
}; };
netaccess01 = { netaccess01 = {
site = "hyp02"; site = "hyp02";