Versions Compared

Old Version 2

changes.mady.by.user James Gu

Saved on

compared with

New Version Current

changes.mady.by.user James Gu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Airship requires internet access on the OAM network for downloading images and packages unless the user has created downstream repositories for the same purpose.  In the LaaS Lab, the only network that has internet access is the lab management network (refer to the air-pod01 network architecture).  Addition steps must be followed to create a gateway/router on the jumphost to enable internet access on the OAM network.

  1.  Create the lab management and OAM network on the jump host.  Below is an example of netplan cofniguration:
Code Block
languageyml
title

...

/etc/netplan/50-cloud-init.yaml
network:
    version: 2
    renderer: networkd
    ethernets:
        # Lab management network
        eno49:
          dhcp4: yes

...

# PXE network

...

eno50:
           addresses:

...

...

...

...

- 10.200.212.

...

20/24
        ens1f0:
            match:
                macaddress: 3c:fd:fe:ef:10:29
            mtu: 9100
            set-name: ens1f0
        ens1f1:
            match:
                macaddress: 3c:fd:fe:ef:10:29
            mtu: 9100
            set-name: ens1f1
        ens4f0:
            match:
                macaddress: 3c:fd:fe:ef:0e:b9
            mtu: 9100
            set-name: ens4f0
        ens4f1:
            match:
                macaddress: 3c:fd:fe:ef:0e:b9
            mtu: 9100
            set-name: ens4f1
    bonds:
        bond0:
            interfaces:
            - ens1f1
            - ens4f0
            mtu: 9214
            parameters:
                lacp-rate: fast
                mode: 802.3ad
                transmit-hash-policy: layer3+4
    vlans:
        # oam network
        bond0.201:
            addresses:
            - 10.200.201.1/24
            id: 201
            link: bond0
            mtu: 9100
            nameservers:
                addresses:
                - 8.8.8.8
                - 8.8.4.4

...

2.  Enable IP forwarding by editing /etc/sysctl.conf to add or ubcomment the following line:
 Code Block
languagebash
net.ipv4.ip_forward=1

3. Enable IP masquerading
 Code Block
languagebash
sudo iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
sudo iptables -A FORWARD -i eth1 -o eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
sudo iptables -A FORWARD -i eth0 -o eth1 -j ACCEPT

To save settings to iptables either by installing iptables-persistent:
 Code Block
languagebash
sudo apt-get install iptables-persistent
if it was already installed please update setting by running:
 Code Block
languagebash
sudo dpkg-reconfigure iptables-persistent

or execute the following command:
 Code Block
languagebash
sudo iptables-save > /etc/iptables/rules.v4

Manifest
...
TBD

Airship is a declarative way of automating the deployment of a site. Therefore, all the deployment details are defined in the manifests.
...