Gitiles
Code Review Sign In
gerrit.opencord.org / ansible / role / netprep / e695dea3163e239723a7ef7b1a4c237657f65bbf^! / . / tasks / Debian.yml
commite695dea3163e239723a7ef7b1a4c237657f65bbf[log] [tgz]
authorZack Williams <zdw@opennetworking.org>Thu Nov 19 17:17:40 2020 -0700
committerZack Williams <zdw@opennetworking.org>Mon Nov 23 10:20:21 2020 -0700
tree76048935db463f2bcad07ae52d12b74134132aa9
Initial commit of netprep role

Change-Id: I2fb7fbaa37a70d29dee35d491c166088a3fae297

diff --git a/tasks/Debian.yml b/tasks/Debian.yml
new file mode 100644
index 0000000..132785a
--- /dev/null
+++ b/tasks/Debian.yml

@@ -0,0 +1,46 @@
+---
+# netprep tasks/Debian.yml
+#
+# SPDX-FileCopyrightText: © 2020 Open Networking Foundation <support@opennetworking.org>
+# SPDX-License-Identifier: Apache-2.0
+
+- name: Install network prep packages
+  apt:
+    name:
+      - bridge-utils
+      - vlan
+      - nftables
+    update_cache: true
+    cache_valid_time: 3600
+
+
+- name: Enable sysctl for IPv4 forwarding
+  sysctl:
+    name: net.ipv4.ip_forward
+    value: '1'
+    sysctl_set: true
+    reload: true
+
+- name: Create a netplan for non-primary interfaces
+  template:
+    src: netplan.yaml.j2
+    dest: /etc/netplan/02-pronto.yaml
+    backup: true
+    owner: root
+    group: root
+    mode: 0644
+  notify:
+    - netplan-apply
+
+# Docs: http://nftables.org/
+- name: Create nftables config file
+  template:
+    src: nftables.conf.j2
+    dest: /etc/nftables.conf
+    backup: true
+    owner: root
+    group: root
+    mode: 0755
+    validate: nft -c -f %s
+  notify:
+    - nftables-reload