Page MenuHomeDevCentral
Projects Secure HA tunnels

Secure HA tunnelsInfrastructure
ActivePublic
Watch Project

Members (4)

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

GRE tunnel with IPSEC and CARP

Recent Activity
View All

Thu, May 21

dereckson triaged T2327: On boot, Dwellers and docker-002 don't have routing as High priority.
Thu, May 21, 00:35 · Secure HA tunnels

Wed, May 20

dereckson added a project to T2325: Server outage: Investigate Ysul.nasqueron.org network access and unresponsive Salt minion: Secure HA tunnels.
Wed, May 20, 18:16 · Secure HA tunnels, Servers

Thu, May 14

Duranzed moved T2278: Recreate GRE tunnels on router-002 and router-003 from Backlog to Done on the Secure HA tunnels board.
Thu, May 14, 22:05 · Secure HA tunnels
yousra moved T2303: Installation and configuration of FRRouting from Working on to Done on the Secure HA tunnels board.
Thu, May 14, 14:44 · Drake network, Salt, Secure HA tunnels
yousra moved T2324: Ensure OSPF default route is used by all IntraNought nodes from Working on to Done on the Secure HA tunnels board.
Thu, May 14, 14:44 · Drake network, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
Thu, May 14, 14:44 · Drake network, Salt, Secure HA tunnels

May 6 2026

yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 6 2026, 08:06 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 6 2026, 07:40 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 6 2026, 07:39 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 6 2026, 07:37 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 6 2026, 07:33 · Drake network, Salt, Secure HA tunnels

May 5 2026

yousra moved T2319: Automate GRE tunnel failover on CARP PRIMARY router from Working on to Done on the Secure HA tunnels board.
May 5 2026, 18:20 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra moved T2322: Create log file for GRE tunnel creation script from Working on to Done on the Secure HA tunnels board.
May 5 2026, 14:23 · Servers, Secure HA tunnels
yousra added a revision to T2322: Create log file for GRE tunnel creation script: D4101: Update GRE tunnels syslog configuration.
May 5 2026, 12:59 · Servers, Secure HA tunnels
yousra added a revision to T2322: Create log file for GRE tunnel creation script: D4097: Rotate GRE tunnels log.
May 5 2026, 11:38 · Servers, Secure HA tunnels

May 4 2026

yousra added a comment to T2324: Ensure OSPF default route is used by all IntraNought nodes.

When router-002 takes over, the default route changes as expected.

May 4 2026, 20:15 · Drake network, Secure HA tunnels
yousra edited projects for T2324: Ensure OSPF default route is used by all IntraNought nodes, added: Drake network; removed Servers.
May 4 2026, 18:13 · Drake network, Secure HA tunnels
yousra added a project to T2324: Ensure OSPF default route is used by all IntraNought nodes: Servers.
May 4 2026, 18:13 · Drake network, Secure HA tunnels
yousra added a comment to T2324: Ensure OSPF default route is used by all IntraNought nodes.

However, after the default route was changed, complector could no longer reach the Internet (e.g. ping 8.8.8.8).

May 4 2026, 18:03 · Drake network, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 4 2026, 14:39 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 4 2026, 14:38 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2303: Installation and configuration of FRRouting.
May 4 2026, 14:36 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2324: Ensure OSPF default route is used by all IntraNought nodes.
May 4 2026, 14:33 · Drake network, Secure HA tunnels
yousra added a comment to T2324: Ensure OSPF default route is used by all IntraNought nodes.

After testing Complector with OSPF enabled to receive the default route, it works as expected.

May 4 2026, 14:32 · Drake network, Secure HA tunnels
yousra updated the task description for T2324: Ensure OSPF default route is used by all IntraNought nodes.
May 4 2026, 14:23 · Drake network, Secure HA tunnels
yousra updated the task description for T2324: Ensure OSPF default route is used by all IntraNought nodes.
May 4 2026, 14:10 · Drake network, Secure HA tunnels
yousra updated the task description for T2324: Ensure OSPF default route is used by all IntraNought nodes.
May 4 2026, 14:10 · Drake network, Secure HA tunnels
yousra renamed T2324: Ensure OSPF default route is used by all IntraNought nodes from Ensure all IntraNought nodes use OSPF-learned default route from the active router to Ensure OSPF default route is used by all IntraNought nodes.
May 4 2026, 14:09 · Drake network, Secure HA tunnels
yousra renamed T2324: Ensure OSPF default route is used by all IntraNought nodes from Ensure all IntraNought nodes use OSPF for default routing to Ensure all IntraNought nodes use OSPF-learned default route from the active router.
May 4 2026, 14:08 · Drake network, Secure HA tunnels
yousra triaged T2324: Ensure OSPF default route is used by all IntraNought nodes as Normal priority.
May 4 2026, 14:07 · Drake network, Secure HA tunnels
yousra added a comment to T2303: Installation and configuration of FRRouting.

Finally check after T2319 :

May 4 2026, 14:01 · Drake network, Salt, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
May 4 2026, 11:53 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

May 3 2026

yousra added a comment to T2319: Automate GRE tunnel failover on CARP PRIMARY router.

@dereckson While testing and modifying the GRE tunnel, it took so long on Ysul that SSH stopped responding, and we lost access to the machine.

May 3 2026, 16:52 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
May 3 2026, 16:49 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a comment to T2319: Automate GRE tunnel failover on CARP PRIMARY router.

Now, regardless of whether router-002 or router-003 is the primary router, the tunnel with Windriver works perfectly. However, there is still an issue with Ysul: the tunnel works when router-003 is primary, but it does not work when router-002 is primary.

May 3 2026, 16:48 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
May 3 2026, 16:46 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra moved T2315: Reprovision Ysul from Working on to Backlog on the Secure HA tunnels board.
May 3 2026, 14:00 · Secure HA tunnels, Servers
yousra moved T2276: Automate CARP VIP MAC reassignment using devd and OVH API from Working on to Done on the Secure HA tunnels board.
May 3 2026, 14:00 · Python, Drake network, Servers, Monitoring and reporting, Secure HA tunnels

May 1 2026

Duranzed moved T2201: GRE tunnel creation from WIP to Finished on the User-Duranzed board.
May 1 2026, 13:43 · User-Duranzed, Secure HA tunnels

Apr 29 2026

yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 17:56 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra added a revision to T2319: Automate GRE tunnel failover on CARP PRIMARY router: D4098: Add Salt reactor for GRE tunnel creation on CARP failover.
Apr 29 2026, 17:55 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:39 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:37 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:36 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:35 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:34 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra assigned T2322: Create log file for GRE tunnel creation script to Duranzed.
Apr 29 2026, 12:24 · Servers, Secure HA tunnels
yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:19 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
yousra renamed T2319: Automate GRE tunnel failover on CARP PRIMARY router from Automate GRE tunnel failover on CARP master switch to Automate GRE tunnel failover on CARP PRIMARY router.
Apr 29 2026, 12:18 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels

Apr 28 2026

yousra updated the task description for T2319: Automate GRE tunnel failover on CARP PRIMARY router.
Apr 28 2026, 08:11 · Monitoring and reporting, Python, Salt, Drake network, Secure HA tunnels
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator