-
Notifications
You must be signed in to change notification settings - Fork 12
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Test internet connectivity of the machines (#159)
This is brilliant !
- Loading branch information
1 parent
1a87d71
commit d31688b
Showing
19 changed files
with
177 additions
and
259 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
{ | ||
"ignition": { | ||
"config": {}, | ||
"security": {}, | ||
"timeouts": {}, | ||
"version": "2.3.0" | ||
}, | ||
"networkd": {}, | ||
"passwd": {}, | ||
"storage": { | ||
"files": [ | ||
{ | ||
"filesystem": "root", | ||
"path": "/etc/hosts.allow", | ||
"append": true, | ||
"contents": { | ||
"source": "data:,ALL%3A%20%5Bfe80%3A%3A%5D%2F10%0D%0AALL%3A%20203.0.113.1%0D%0A", | ||
"verification": {} | ||
}, | ||
"mode": 644 | ||
} | ||
] | ||
}, | ||
"systemd": {} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,30 @@ | ||
--- | ||
egress: | ||
- comment: allow outgoing https | ||
ports: | ||
- 443 | ||
protocol: TCP | ||
to: | ||
- 0.0.0.0/0 | ||
- comment: allow outgoing dns via tcp | ||
ports: | ||
- 53 | ||
protocol: TCP | ||
to: | ||
- 0.0.0.0/0 | ||
- comment: allow outgoing dns and ntp via udp | ||
ports: | ||
- 53 | ||
- 123 | ||
protocol: UDP | ||
to: | ||
- 0.0.0.0/0 | ||
ingress: | ||
- comment: allow incoming ssh | ||
ports: | ||
- 22 | ||
protocol: TCP | ||
from: | ||
- 203.0.113.1/25 | ||
to: | ||
- 203.0.113.128/25 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
Host leaf01 | ||
HostName leaf01 | ||
User root | ||
IdentityFile files/ssh/id_rsa | ||
PasswordAuthentication no | ||
StrictHostKeyChecking no | ||
UserKnownHostsFile /dev/null | ||
PubkeyAcceptedKeyTypes +ssh-rsa | ||
|
||
Host * !leaf01 | ||
User metal | ||
IdentityFile files/ssh/id_rsa | ||
PasswordAuthentication no | ||
StrictHostKeyChecking no | ||
UserKnownHostsFile /dev/null | ||
# bash could be replaced with ncat, but it is not preinstalled on Cumulus | ||
ProxyCommand ssh -q -F files/ssh/config leaf01 'sudo ip vrf exec default bash -c "exec 3<>/dev/tcp/%h/%p; cat<&0 >&3 & cat<&3 >&1"' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.