ThysTips_dn42/ansible-dn42
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
No description
26 commits 1 branch 0 tags 1.3 MiB
Find a file
Exact
ThysTips 67180f589b
 refactor: Add local zones dns forward 
Signed-off-by: ThysTips <contact@antoinethys.com>
2025-10-31 01:05:34 +01:00
.config chore: Fix lint issues 2025-10-25 16:04:53 +02:00
.idea fix: interface track services 2025-06-28 20:43:09 +02:00
.vscode refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00
dn42-registry@1e621964f5 chore: Fix lint issues 2025-10-25 16:04:53 +02:00
files Rework all config for fresh deploy 2024-11-17 19:27:34 +01:00
filter_plugins Rework all config for fresh deploy 2024-11-17 19:27:34 +01:00
global-config refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00
group_vars Init repo with modified code 2024-03-17 22:21:38 +01:00
host_vars chore: Add Darkpoint peering 2025-10-26 01:34:57 +02:00
roles refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00
scripts fix: interface track services 2025-06-28 20:43:09 +02:00
templates WIP: fix some stuff 2025-06-25 00:16:09 +02:00
tmp Init repo with modified code 2024-03-17 22:21:38 +01:00
.gitignore refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00
.gitmodules Init repo with modified code 2024-03-17 22:21:38 +01:00
ansible.cfg feat: Add mitogen 2025-10-25 19:12:10 +02:00
CLAUDE.md chore: Replace pipenv by uv 2025-10-18 17:12:56 +02:00
communities-reference.txt Init repo with modified code 2024-03-17 22:21:38 +01:00
encrypt-string.sh Init repo with modified code 2024-03-17 22:21:38 +01:00
hosts.yml refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00
justfile Rework all config for fresh deploy 2024-11-17 19:27:34 +01:00
LICENSE Initial commit 2024-03-10 00:07:59 +01:00
playbook-dns-servers.yml refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00
playbook-update-states.yml WIP: fix some stuff 2025-06-25 00:16:09 +02:00
playbook-vault.yml WIP: fix some stuff 2025-06-25 00:16:09 +02:00
playbook.yml refactor: Add rlab router 2025-10-26 02:58:17 +02:00
pylintrc Init repo with modified code 2024-03-17 22:21:38 +01:00
pyproject.toml feat: Add mitogen 2025-10-25 19:12:10 +02:00
README.md Rework all config for fresh deploy 2024-11-17 19:27:34 +01:00
requirements.yml WIP: fix some stuff 2025-06-25 00:16:09 +02:00
uv.lock refactor: Add local zones dns forward 2025-10-31 01:05:34 +01:00

README.md

DN42 configuration with Ansible

This repository contains the configuration for my DN42 network deployed with Ansible.

The majority of the configuration (bird, powerdns, wireguard, some scripts) comes from the jlu5's dn42-ansible repository, with some modifications to fit my needs. I big thanks to him for his open-source work.

If you have any questions or suggestions, feel free to open an issue or a pull request.

Warnings

  • Some of the configuration files contain specific information about my network, such as IP addresses and AS numbers. You should replace them with your own information.
  • Some steps are not automated, such as Vault CA initialization. You should do them manually.
  • Vault initialization and unsealing are scripted and use 1password CLI. You cannot use them as-is.
  • The configuration is not perfect and may contain errors. Use it at your own risk.

Major differences

  • Replace iptables with nftables
  • Fix ansible-lint issues
  • Routing policies are simpler
  • Add Hashicorp Vault

TODO

  • Create new splash site
  • Rework vault deployment and security
  • Restructure roles
  • Make roles more generic and reusable
  • Rewrite this README
  • Add more documentation
  • Add more comments to the configuration files