Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jlu5/ansible-dn42

Ansible code to configure dn42
https://github.com/jlu5/ansible-dn42

ansible bird dn42

Last synced: about 7 hours ago
JSON representation

Ansible code to configure dn42

Host: GitHub
URL: https://github.com/jlu5/ansible-dn42
Owner: jlu5
License: other
Created: 2020-05-25T06:59:07.000Z (over 4 years ago)
Default Branch: main
Last Pushed: 2024-11-10T05:39:16.000Z (5 days ago)
Last Synced: 2024-11-10T06:25:35.151Z (5 days ago)
Topics: ansible, bird, dn42
Language: Jinja
Homepage:
Size: 2.7 MB
Stars: 50
Watchers: 2
Forks: 32
Open Issues: 0
Metadata Files:
- Readme: README.md
- Changelog: history.svg
- License: LICENSE.CC-BY-SA.4.0

Awesome Lists containing this project

README

        # ansible-dn42

This repository contains the configs for **AS4242421080 / HIGHDEF-AS** on [dn42](https://dn42.dev/Home). For more details, see https://highdef.network/

## Network topology

This iteration of the network uses OSPF (v2 + v3) and a full mesh of iBGP sessions over WireGuard. Internal costs between nodes are [periodically generated](scripts/igpping/) based off latency and packet loss.

[Routing Policy](ROUTING-POLICY.md)

## Config structure

Here I use Ansible to configure the following components:

### Peering tunnels

- Wireguard via ifupdown: [roles/config-wireguard/](roles/config-wireguard/)

- OpenVPN (2.5.x): [roles/config-openvpn/](roles/config-openvpn/)

- GRE (plain) via ifupdown: [roles/config-gre-plain/](roles/config-gre-plain/)

### Services and daemons

- BIRD 2: [roles/config-bird2/](roles/config-bird2/)

- bird-lg-go looking glass: [roles/setup-bird-lg-go/](roles/setup-bird-lg-go/)

- nginx - frontend reverse proxy to services + a dn42 splash site

- PowerDNS (authoritative server + recursor):

  - Anycast authoritative server for dn42 zones: [roles/config-powerdns/](roles/config-powerdns/)

    - **ns.highdef.dn42** / l.delegation-servers.dn42

  - Anycast recursor for dn42, clearnet, and interconnected networks: [roles/config-powerdns-recursor/](roles/config-powerdns-recursor/)

    - **dns.highdef.dn42** / l.recursive-servers.dn42 / 172.23.0.53 / fd42:d42:d42:53::1

### Statistics and monitoring

- Netdata: [roles/setup-netdata-v2/](roles/setup-netdata-v2/)

- Smokeping @ [ping.highdef.dn42](http://ping.highdef.dn42): [roles/setup-smokeping/](roles/setup-smokeping/)

## Network growth over time

Note that these values represent configured peers, which may or may not be up at any particular time.

![History of my network](history.svg)