19:21 < Yousra> Dereckson router-003: IP= 178.32.70.111/30, en fait .111 c'est la broadcast
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed Advanced Search
Advanced Search
Advanced Search
Feb 26 2026
Feb 26 2026
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
Feb 25 2026
Feb 25 2026
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
yousra renamed T2264: Implement CARP configuration for router-002 and router-003 from Implement CARP configurations for router-002 and router-003 to Implement CARP configuration for router-002 and router-003 .
Feb 24 2026
Feb 24 2026
yousra triaged T2265: Add forward A records for routers (2 and 3) and public CARP VIP as Normal priority.
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
yousra updated the task description for T2264: Implement CARP configuration for router-002 and router-003 .
yousra triaged T2264: Implement CARP configuration for router-002 and router-003 as Normal priority.
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
Feb 23 2026
Feb 23 2026
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
Feb 22 2026
Feb 22 2026
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra renamed T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret) from CARP setup (IP allocation, vhid, advskew / priorité (master / backup), secret shared) to CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra renamed T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret) from CARP setup (IP allocation, vhid, advskew / priorité (master / backup)) to CARP setup (IP allocation, vhid, advskew / priorité (master / backup), secret shared).
yousra renamed T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret) from Define IP range to use with CARP to CARP setup (IP allocation, vhid, advskew / priorité (master / backup)).
Feb 20 2026
Feb 20 2026
Feb 19 2026
Feb 19 2026
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
dereckson added a comment to T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
Feb 18 2026
Feb 18 2026
yousra moved T2202: Pick solution for IPsec from Documentation to Done on the Secure HA tunnels board.
yousra added a comment to T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
A new bloc IPV4 was added in NetBox : The 172.27.27.0/28 subnet was fully allocated and currently used by VMs on Hyper-1, so I expand it to a larger prefix by combining 172.27.27.0/28 and 172.27.27.16/28 into a single 172.27.27.0/27 subnet to allow better address utilization in the future.
yousra moved T2261: Request additional public IPv4 block for CARP setup from Backlog to Done on the Secure HA tunnels board.
The additional public IPv4 address has been received and is ready to be used for the CARP setup : IP=51.68.252.230/32
yousra added projects to T2261: Request additional public IPv4 block for CARP setup: Servers, Secure HA tunnels.
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
We chose to go with strongswan as it is native to FreeBSD and the most complete solution in terms of supported protocols. Strongswan has already been installed and tested on router-002 and router-003.
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
yousra updated the task description for T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret).
Feb 17 2026
Feb 17 2026
GRE tunnel and IPsec configurations work as intended between router-002 and router-003, GRE is reachable on both sides and traffic is encrypted in IPsec with an ESP header
yousra renamed T2223: Server routage: windriver.nasqueron.org from Server outage: windriver.nasqueron.org to Server routage: windriver.nasqueron.org.
yousra moved T2227: CARP : what we need to know from Working on to Done on the Secure HA tunnels board.
I can then proceed with the CARP configuration, and if new things are discovered, I will document them on the wiki :)
Feb 16 2026
Feb 16 2026
dereckson renamed T2203: CARP setup (IP allocation, vhid, advskew / priorité (master / backup), shared secret) from Define IP range to Define IP range to use with CARP.
This task should be clarified.
dereckson renamed T2209: Test TCP and UDP traffic from Test trafic tcp/upd to Test TCP and UDP traffic.
Feb 15 2026
Feb 15 2026
Yousra asked on #nasqueron-ops22:24:01 < yousra> Dereckson Je me disais que, dans la configuration actuelle, router-004 ne serait utilisé qu’en cas de panne. En fonctionnement normal, une des deux
machines resterait donc presque inactive. Je trouvais que se serait plutôt bien que les deux routeurs travaillent en permanence tout en gardant la redondance.
22:24:02 < yousra> Mais comme on n’a pas vraiment plusieurs VLAN ou réseaux distincts, je ne suis pas sûr que la topologie actuelle permette cette répartition. Est-ce qu’on > pourrait quand même optimiser ça d’une certaine manière ?
Feb 12 2026
Feb 12 2026
yousra moved T2223: Server routage: windriver.nasqueron.org from Backlog to Done on the Secure HA tunnels board.
yousra renamed T2227: CARP : what we need to know from CARP behavior and IP addressing model to CARP : what we need to know.
yousra renamed T2227: CARP : what we need to know from CARP behavior IP addressing model to CARP behavior and IP addressing model.
yousra moved T2221: Create 2 new routers from Documentation to Backlog on the Secure HA tunnels board.
yousra moved T2221: Create 2 new routers from Working on to Documentation on the Secure HA tunnels board.
yousra moved T2202: Pick solution for IPsec from Working on to Documentation on the Secure HA tunnels board.
A tunnel has been created between router-002 and router-003 using standard interface to avoid recursion and have a stable connection
Feb 11 2026
Feb 11 2026
It was a nice work and comprehensive: NetBox, Salt, deployed.
Just a small note we should still reboot WindRiver:
- to validate "second chance route for Drake service" (D3897)
- to fix pam_nologin issue
dereckson moved T2202: Pick solution for IPsec from Backlog to Working on on the Secure HA tunnels board.
dereckson moved T2221: Create 2 new routers from Backlog to Working on on the Secure HA tunnels board.
dereckson moved T2202: Pick solution for IPsec from Backlog to Doc to write on the documentation board.
The on-wiki page doesn't currently give a clear overview of what it would be like to run against each solution.
dereckson moved T2202: Pick solution for IPsec from Backlog to Current focus on the Product evaluation board.
Feb 9 2026
Feb 9 2026
21:30:03 < yousra> [ERROR] Source file salt://roles/core/motd/files/router-002 not found in salt env 'base'
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator