62 lines
1.6 KiB
YAML
62 lines
1.6 KiB
YAML
---
|
|
loc_service_firewall:
|
|
git:
|
|
remote: https://gitlab.adm.crans.org/nounous/firewall.git
|
|
version: main
|
|
|
|
loc_radvd:
|
|
subnets:
|
|
- name: adh
|
|
prefix: 2a0c:700:12::/64
|
|
dnssl: adh.crans.org
|
|
dns:
|
|
- 2a0c:700:12::ff:fe00:9912
|
|
|
|
loc_dhcp:
|
|
authoritative: true
|
|
subnets:
|
|
- network: "185.230.78.0/24"
|
|
deny_unknown: true
|
|
vlan: "adh"
|
|
default_lease_time: "600"
|
|
max_lease_time: "7200"
|
|
routers: "{{ lookup('ldap', 'ip4', 'passerelle', 'adh') }}"
|
|
dns: ["{{ lookup('ldap', 'ip4', 'romanesco', 'adh') }}"]
|
|
domain_name: "adh.crans.org"
|
|
domain_search: "adh.crans.org"
|
|
options: []
|
|
lease_file: "/var/local/services/dhcp/generated/dhcp.adh.crans.org.list"
|
|
|
|
loc_service_dhcp:
|
|
git:
|
|
remote: https://gitlab.adm.crans.org/nounous/dhcp.git
|
|
version: main
|
|
systemd:
|
|
Unit:
|
|
After: network-online.target
|
|
Wants: network-online.target
|
|
StartLimitBurst: 3
|
|
StartLimitInterval: 40
|
|
Service:
|
|
Restart: on-failure
|
|
RestartSec: 10
|
|
ExecStart: "/usr/bin/python3 /var/local/services/dhcp/dhcp.py -r"
|
|
Type: oneshot
|
|
User: root
|
|
timer:
|
|
Unit: []
|
|
Timer:
|
|
OnCalendar: "*:0/2"
|
|
Persistent: true
|
|
Install:
|
|
WantedBy: timers.target
|
|
config:
|
|
ldap:
|
|
server: ldaps://flirt.adm.crans.org
|
|
binddn: "{{ vault.ldap_adh_reader.binddn }}"
|
|
bindpass: "{{ vault.ldap_adh_reader.bindpass }}"
|
|
userdn: ou=users,dc=adh,dc=crans,dc=org
|
|
clubdn: ou=clubs,dc=adh,dc=crans,dc=org
|
|
hostdn: ou=hosts,dc=adh,dc=crans,dc=org
|
|
extension: adh.crans.org
|