Changeset - c8360d089cfd
Parent rev.
Child rev.
[Not reviewed]
0 1 0
x - 3 days ago 2025-08-23 23:56:31
xbr@c3l.lu
fix: iproute2 default config moved to /usr/share/ in Debian 13
1 file changed with 12 insertions and 0 deletions:
gateway/initial_gw_setup.yml
12
0 comments (0 inline, 0 general)
gateway/initial_gw_setup.yml
Show inline comments
 
@@ -54,48 +54,60 @@
 
    - name: Remove immutable attribute on resolv.conf
 
      ansible.builtin.file:
 
        dest: /etc/resolv.conf
 
        attributes: '-i'
 
      become: true
 
      tags: config
 
    - name: Create a symbolic link for resolv.conf, replacing the initial resolv.conf
 
      ansible.builtin.file:
 
        src: /run/systemd/resolve/resolv.conf
 
        dest: /etc/resolv.conf
 
        owner: root
 
        group: root
 
        state: link
 
        attributes: '-i'
 
        force: true
 
      become: true
 
      tags: config
 
    - name: Start systemd-resolved
 
      ansible.builtin.service:
 
        name: "systemd-resolved"
 
        state: "started"
 
        enabled: "true"
 
      tags: config
 

			




	
	
	
		
 
    - name: Ensure /etc/iproute2 exists

			




	
	
	
		
 
      ansible.builtin.file:

			




	
	
	
		
 
        path: /etc/iproute2

			




	
	
	
		
 
        state: directory

			




	
	
	
		
 
        mode: '0755'

			




	
	
	
		
 
      tags: config

			




	
	
	
		
 
    - name: Copy routing table if non-existing

			




	
	
	
		
 
      ansible.builtin.copy:

			




	
	
	
		
 
        src: /usr/share/iproute2/rt_tables

			




	
	
	
		
 
        dest: /etc/iptables2/rt_tables

			




	
	
	
		
 
        force: false

			




	
	
	
		
 
      tags: config

			




	
	
	
		
 
    - name: Add the routing table for freifunk

			




	
	
	
		
 
      ansible.builtin.blockinfile:

			




	
	
	
		
 
        path: /etc/iproute2/rt_tables

			




	
	
	
		
 
        backup: true

			




	
	
	
		
 
        block: |

			




	
	
	
		
 
          # freifunk

			




	
	
	
		
 
          33      lux

			




	
	
	
		
 
          42      icvpn

			




	
	
	
		
 
          100     vpn

			




	
	
	
		
 
      tags: config

			




	
	
	
		
 

			




	
	
	
		
 
    # Modules

			




	
	
	
		
 
    - name: Load `br_netfilter` kernel module

			




	
	
	
		
 
      community.general.modprobe:

			




	
	
	
		
 
        name: "br_netfilter"

			




	
	
	
		
 
        persistent: "present"

			




	
	
	
		
 
        state: "present"

			




	
	
	
		
 
    - name: Add `nf_conntrack` to modules

			




	
	
	
		
 
      community.general.modprobe:

			




	
	
	
		
 
        name: "nf_conntrack"

			




	
	
	
		
 
        state: "present"

			




	
	
	
		
 
        persistent: "present"

			




	
	
	
		
 
      tags: config

			




	
	
	
		
 

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        Server instance: saturn-2246139
    
    
        This site is powered by
            Kallithea,
        which is
        © 2010–2021 by various authors & licensed under GPLv3.
            – Support