tuvok/paris: enable keepalived

This commit is contained in:
Luke Granger-Brown 2021-03-20 01:08:33 +00:00
parent c51e5d478d
commit 7f27f9fb79
2 changed files with 24 additions and 4 deletions

View file

@ -16,10 +16,6 @@ in {
networking = { networking = {
hostName = "blade-paris"; hostName = "blade-paris";
hostId = "41b2a198"; hostId = "41b2a198";
interfaces.br-mgmt.ipv4.addresses = [{
address = "10.100.0.1";
prefixLength = 23;
}];
interfaces.br-public.ipv4.addresses = [{ interfaces.br-public.ipv4.addresses = [{
address = "92.118.28.1"; address = "92.118.28.1";
prefixLength = 24; prefixLength = 24;
@ -34,6 +30,7 @@ in {
}]; }];
defaultGateway = "195.74.55.22"; defaultGateway = "195.74.55.22";
defaultGateway6 = "2a03:ee40:8080:9:2::1"; defaultGateway6 = "2a03:ee40:8080:9:2::1";
firewall.extraCommands = "iptables -A INPUT -p vrrp -i br-mgmt -j ACCEPT";
}; };
my.ip.tailscale = "100.117.185.118"; my.ip.tailscale = "100.117.185.118";
my.blade.bay = 2; my.blade.bay = 2;
@ -50,4 +47,15 @@ in {
daemons = [ "2" ]; daemons = [ "2" ];
}; };
}; };
services.keepalived = {
enable = true;
vrrpInstances.mgmtGateway = {
interface = "br-mgmt";
state = "MASTER";
priority = 100;
virtualIps = [{ addr = "10.100.0.1/23"; }];
virtualRouterId = 1;
};
};
} }

View file

@ -27,6 +27,7 @@ in {
defaultGateway = "195.74.55.20"; defaultGateway = "195.74.55.20";
defaultGateway6 = "2a03:ee40:8080:9:1::1"; defaultGateway6 = "2a03:ee40:8080:9:1::1";
firewall.allowedTCPPorts = [ 80 443 ]; firewall.allowedTCPPorts = [ 80 443 ];
firewall.extraCommands = "iptables -A INPUT -p vrrp -i br-mgmt -j ACCEPT";
}; };
my.ip.tailscale = "100.119.123.33"; my.ip.tailscale = "100.119.123.33";
my.blade.bay = 6; my.blade.bay = 6;
@ -74,4 +75,15 @@ in {
]; ];
}; };
}; };
services.keepalived = {
enable = true;
vrrpInstances.mgmtGateway = {
interface = "br-mgmt";
state = "MASTER";
priority = 50;
virtualIps = [{ addr = "10.100.0.1/23"; }];
virtualRouterId = 1;
};
};
} }