xos/observers/vcpe/steps/sync_vcpetenant.yaml - xos - Gitiles

 ---
 - hosts: {{ sliver_name }}
   connection: ssh
   user: ubuntu
   sudo: yes
   vars:
       cdn_enable: {{ cdn_enable }}
       dnsdemux_ip: {{ dnsdemux_ip }}
       firewall_enable: {{ firewall_enable }}
       url_filter_enable: {{ url_filter_enable }}
       vlan_ids:
         {% for vlan_id in vlan_ids %}
         - {{ vlan_id }}
         {% endfor %}
       firewall_rules:
         {% for firewall_rule in firewall_rules.split("\n") %}
         - {{ firewall_rule }}
         {% endfor %}
       cdn_prefixes:
         {% for prefix in cdn_prefixes %}
         - {{ prefix }}
         {% endfor %}

   tasks:
   - name: Docker repository
     copy: src=/opt/xos/observers/vcpe/files/docker.list
       dest=/etc/apt/sources.list.d/docker.list

   - name: Import the repository key
     apt_key: keyserver=keyserver.ubuntu.com id=36A1D7869245C8950F966E92D8576A8BA88D21E9

   - name: install Docker
     apt: name=lxc-docker-1.5.0 state=present update_cache=yes

   - name: install python-setuptools
     apt: name=python-setuptools state=present

   - name: install pip
     easy_install: name=pip

   - name: install docker-py
     pip: name=docker-py version=0.5.3

   - name: install Pipework
     get_url: url=https://raw.githubusercontent.com/jpetazzo/pipework/master/pipework
        dest=/usr/local/bin/pipework
        mode=0755

   - name: bring up LAN interface
     shell: ifconfig eth2 up

   - name: bring up WAN interface
     shell: ifconfig eth3 up

   - name: make sure /etc/dnsmasq.d exists
     file: path=/etc/dnsmasq.d state=directory owner=root group=root

   - name: dnsmasq config
     template: src=/opt/xos/observers/vcpe/templates/dnsmasq_servers.j2 dest=/etc/dnsmasq.d/servers.conf owner=root group=root

   - name: networking info
     template: src=/opt/xos/observers/vcpe/templates/vlan_sample.j2 dest=/etc/vlan_sample owner=root group=root

   - name: firewall info
     template: src=/opt/xos/observers/vcpe/templates/firewall_sample.j2 dest=/etc/firewall_sample owner=root group=root

   - name: Make sure iptables module loaded
     shell: "iptables -L > /dev/null"

   - name: Make sure ip6tables module loaded
     shell: "ip6tables -L > /dev/null"

   - name: Disable resolvconf updates (to avoid overwriting /etc/resolv.conf on host)
     shell: service resolvconf disable-updates

   - name: spin up container
     docker: name=vcpe
       image=andybavier/docker-vcpe
       net=none
       privileged=yes

   # This needs attention once ONOS is integrated
   - name: Connect container to WAN network
     shell: docker exec vcpe ifconfig eth0 >> /dev/null || pipework eth3 -i eth0 vcpe 10.1.2.3/24

   # This needs attention once ONOS is integrated
   - name: Connect container to LAN network
     shell: docker exec vcpe ifconfig eth1 >> /dev/null || pipework eth2 -i eth1 vcpe 192.168.0.1/24

   - name: Start container services
     shell: docker exec vcpe service dnsmasq start
	---
	- hosts: {{ sliver_name }}
	connection: ssh
	user: ubuntu
	sudo: yes
	vars:
	cdn_enable: {{ cdn_enable }}
	dnsdemux_ip: {{ dnsdemux_ip }}
	firewall_enable: {{ firewall_enable }}
	url_filter_enable: {{ url_filter_enable }}
	vlan_ids:
	{% for vlan_id in vlan_ids %}
	- {{ vlan_id }}
	{% endfor %}
	firewall_rules:
	{% for firewall_rule in firewall_rules.split("\n") %}
	- {{ firewall_rule }}
	{% endfor %}
	cdn_prefixes:
	{% for prefix in cdn_prefixes %}
	- {{ prefix }}
	{% endfor %}

	tasks:
	- name: Docker repository
	copy: src=/opt/xos/observers/vcpe/files/docker.list
	dest=/etc/apt/sources.list.d/docker.list

	- name: Import the repository key
	apt_key: keyserver=keyserver.ubuntu.com id=36A1D7869245C8950F966E92D8576A8BA88D21E9

	- name: install Docker
	apt: name=lxc-docker-1.5.0 state=present update_cache=yes

	- name: install python-setuptools
	apt: name=python-setuptools state=present

	- name: install pip
	easy_install: name=pip

	- name: install docker-py
	pip: name=docker-py version=0.5.3

	- name: install Pipework
	get_url: url=https://raw.githubusercontent.com/jpetazzo/pipework/master/pipework
	dest=/usr/local/bin/pipework
	mode=0755

	- name: bring up LAN interface
	shell: ifconfig eth2 up

	- name: bring up WAN interface
	shell: ifconfig eth3 up

	- name: make sure /etc/dnsmasq.d exists
	file: path=/etc/dnsmasq.d state=directory owner=root group=root

	- name: dnsmasq config
	template: src=/opt/xos/observers/vcpe/templates/dnsmasq_servers.j2 dest=/etc/dnsmasq.d/servers.conf owner=root group=root

	- name: networking info
	template: src=/opt/xos/observers/vcpe/templates/vlan_sample.j2 dest=/etc/vlan_sample owner=root group=root

	- name: firewall info
	template: src=/opt/xos/observers/vcpe/templates/firewall_sample.j2 dest=/etc/firewall_sample owner=root group=root

	- name: Make sure iptables module loaded
	shell: "iptables -L > /dev/null"

	- name: Make sure ip6tables module loaded
	shell: "ip6tables -L > /dev/null"

	- name: Disable resolvconf updates (to avoid overwriting /etc/resolv.conf on host)
	shell: service resolvconf disable-updates

	- name: spin up container
	docker: name=vcpe
	image=andybavier/docker-vcpe
	net=none
	privileged=yes

	# This needs attention once ONOS is integrated
	- name: Connect container to WAN network
	shell: docker exec vcpe ifconfig eth0 >> /dev/null \|\| pipework eth3 -i eth0 vcpe 10.1.2.3/24

	# This needs attention once ONOS is integrated
	- name: Connect container to LAN network
	shell: docker exec vcpe ifconfig eth1 >> /dev/null \|\| pipework eth2 -i eth1 vcpe 192.168.0.1/24

	- name: Start container services
	shell: docker exec vcpe service dnsmasq start