Page MenuHomeDevCentral
Differential D2595

Refactor routes configuration
ClosedPublic
Actions

Authored by dereckson on Mar 14 2022, 18:15.
Tags
None
Referenced Files
F2831409: D2595.id6617.diff
Fri, Apr 19, 16:28
F2831363: D2595.id6615.diff
Fri, Apr 19, 16:19
F2831351: D2595.id6618.diff
Fri, Apr 19, 16:16
F2831349: D2595.id6614.diff
Fri, Apr 19, 16:16
F2831280: D2595.id6549.diff
Fri, Apr 19, 16:01
F2831278: D2595.id6548.diff
Fri, Apr 19, 16:01
Unknown Object (File)
Thu, Apr 18, 02:22
Unknown Object (File)
Thu, Apr 18, 01:12
View All Files
Subscribers
None

Details

Reviewers
dereckson
Commits
rOPSbbf096e11218: Refactor routes configuration
Summary

Until now, routes configuration was provided only for FreeBSD,
but nothing for Linux machines.

This change reads route from two sources:

  • the new nodes' network data structure, for default gateway
  • the networks pillar for private networks

For FreeBSD, a consolidated /etc/rc.conf.d/managed replaces
former ipv4 file.

On CentOS and Debian, there is some traction to switch to Network Manager
to configure the network even on servers. There is a NMState library
with a configuration in YAML format suitable for our needs, but dependencies
are really heavy to store this. And it only supports Network Manager,
not used on CentOS machines.

The solution selected for Linux systems is to provision a /etc/routes.conf
with all the routes definition and a routes utility to apply them. Zero
dependency in addition to iproutes. A systemd unit runs it during startup.

Acknowledgment: thanks to @semarie, Natacha (@faelys) and @alarig
for feedback about how to read routes.conf and discard comments.

Test Plan

Deploy on router-001, Ysul and Dwellers

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

dereckson requested review of this revision.Mar 14 2022, 18:15
dereckson created this revision.
Harbormaster completed remote builds in B4061: Diff 6548.Mar 14 2022, 18:15
dereckson planned changes to this revision.Mar 14 2022, 18:17
dereckson added inline comments.
roles/core/network/init.sls
17

D2581 should merge private and ipv4

dereckson added a parent revision: D2594: Reconfigure GRE tunnels.Mar 14 2022, 18:17
dereckson updated this revision to Diff 6549.Mar 14 2022, 18:31

Works also with zero element

Harbormaster completed remote builds in B4062: Diff 6549.Mar 14 2022, 18:31
dereckson mentioned this in T1619: Connect all baremetal servers to Drake network.Mar 14 2022, 23:32
dereckson updated this revision to Diff 6613.Mar 21 2022, 21:02

Rebased

Harbormaster completed remote builds in B4106: Diff 6613.Mar 21 2022, 21:02
dereckson updated this revision to Diff 6614.Mar 21 2022, 21:04

Shorten too long like (black)

Harbormaster completed remote builds in B4107: Diff 6614.Mar 21 2022, 21:04
dereckson added inline comments.Mar 21 2022, 21:05
_modules/node.py
393

Skip it on os_family = 'RedHat' (already got that from GATEWAY in ipcfg script)

dereckson updated this revision to Diff 6615.Mar 21 2022, 21:09

Should be ready

Harbormaster completed remote builds in B4108: Diff 6615.Mar 21 2022, 21:09
dereckson updated this revision to Diff 6616.Mar 21 2022, 21:10

Fix tab

Harbormaster completed remote builds in B4109: Diff 6616.Mar 21 2022, 21:10
dereckson accepted this revision.Mar 21 2022, 22:00

FreeBSD

/etc/rc.conf.d/routing/managed
#   [...]
#   </auto-generated>
static_routes=igb0_default private_drake

route_igb0_default="default 51.159.18.1"

route_private_drake="-net 172.27.27.0/24 172.27.27.254"

Rocky (formerly CentOS 8.5)

/etc/routes.conf on Dwellers
#   [...]
#   </auto-generated>
172.27.27.0/24 via 172.27.27.1
Dwellers
$ systemctl status routes
● routes.service - Apply static routes through ip routes
   Loaded: loaded (/etc/systemd/system/routes.service; enabled; vendor preset: disabled)
   Active: active (exited) since Mon 2022-03-21 21:47:34 UTC; 2min 44s ago
     Docs: https://agora.nasqueron.org/Operations_grimoire/Network
 Main PID: 304762 (code=exited, status=0/SUCCESS)
    Tasks: 0 (limit: 62399)
   Memory: 0B
   CGroup: /system.slice/routes.service

$ netstat -rn | grep 172.27.27.1
172.27.27.0     172.27.27.1     255.255.255.0   UG        0 0          0 ens224

Route is at the correct interface at priority 0.

This revision is now accepted and ready to land.Mar 21 2022, 22:00
dereckson updated this revision to Diff 6617.Mar 21 2022, 22:02

variable -> string for a dictionary key

Harbormaster completed remote builds in B4110: Diff 6617.Mar 21 2022, 22:02
dereckson accepted this revision.Mar 21 2022, 22:12
dereckson edited the summary of this revision. (Show Details)
This revision was landed with ongoing or failed builds.Mar 21 2022, 22:12
Closed by commit rOPSbbf096e11218: Refactor routes configuration (authored by dereckson). · Explain Why
This revision was automatically updated to reflect the committed changes.
dereckson added a commit: rOPSbbf096e11218: Refactor routes configuration.

Revision Contents
Changeset List

PathSize
_modules/
84 lines
pillar/
core/
6 lines
nodes/
15 lines
roles/
core/
network/
files/
FreeBSD/
11 lines
Linux/
FreeBSD/
routes.conf
routing_ipv4.rc
14 lines
routes.service
routing_ipv4.rc
25 lines
Linux/
37 lines
RedHat/
3 lines
1 line
15 lines
17 lines
40 lines

Diff 6618

View Options

_modules/node.py

Loading...
View Options

pillar/core/network.sls

Loading...
View Options

pillar/nodes/nodes.sls

Loading...
View Options

roles/core/network/files/FreeBSD/routing_ipv4.rc

Loading...
View Options

roles/core/network/files/Linux/routes.conf

Loading...
View Options

roles/core/network/files/Linux/routes.service

Loading...
View Options

roles/core/network/files/Linux/routes.sh

Loading...
View Options

roles/core/network/files/RedHat/ifcfg

Loading...
View Options

roles/core/network/init.sls

Loading...
View Options

roles/core/network/ipv4.sls

Loading...
View Options

roles/core/network/map.jinja

Loading...
View Options

roles/core/network/routes.sls

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator