https://github.com/jlu5/ansible-dn42

Ansible code to configure dn42
https://github.com/jlu5/ansible-dn42

ansible bird dn42

Last synced: about 1 year ago
JSON representation

Ansible code to configure dn42

• Host: GitHub
• URL: https://github.com/jlu5/ansible-dn42
• Owner: jlu5
• License: other
• Created: 2020-05-25T06:59:07.000Z (about 6 years ago)
• Default Branch: main
• Last Pushed: 2025-03-29T23:09:18.000Z (about 1 year ago)
• Last Synced: 2025-03-30T00:19:06.361Z (about 1 year ago)
• Topics: ansible, bird, dn42
• Language: Jinja
• Homepage:
• Size: 2.88 MB
• Stars: 51
• Watchers: 1
• Forks: 37
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • Changelog: history.svg
  • License: LICENSE.CC-BY-SA.4.0

Awesome Lists containing this project

README

          
# ansible-dn42

This repository contains the configs for **AS4242421080 / HIGHDEF-AS** on [dn42](https://dn42.dev/Home). For more details, see https://highdef.network/

## Network topology

This iteration of the network uses OSPF (v2 + v3) and a full mesh of iBGP sessions over WireGuard. Internal costs between nodes are [periodically generated](scripts/igpping/) based off latency and packet loss.

[Routing Policy](ROUTING-POLICY.md)

## Config structure

Here I use Ansible to configure the following components:

### Peering tunnels

- Wireguard via ifupdown: [roles/config-wireguard/](roles/config-wireguard/)

- GRE (plain) via ifupdown: [roles/config-gre-plain/](roles/config-gre-plain/)

### Services and daemons

- BIRD 2: [roles/config-bird2/](roles/config-bird2/)

- bird-lg-go looking glass: [roles/setup-bird-lg-go/](roles/setup-bird-lg-go/)

- nginx - frontend reverse proxy to services + a dn42 splash site

- PowerDNS (authoritative server + recursor):

  - Anycast authoritative server for dn42 zones: [roles/config-powerdns/](roles/config-powerdns/)

    - **ns.highdef.dn42** / l.delegation-servers.dn42

  - Anycast recursor for dn42, clearnet, and interconnected networks: [roles/config-powerdns-recursor/](roles/config-powerdns-recursor/)

    - **dns.highdef.dn42** / l.recursive-servers.dn42 / 172.23.0.53 / fd42:d42:d42:53::1

### Statistics and monitoring

- Smokeping @ [ping.highdef.dn42](http://ping.highdef.dn42): [roles/setup-smokeping/](roles/setup-smokeping/)

## Network growth over time

Note that these values represent configured peers, which may or may not be up at any particular time.

![History of my network](history.svg)