Update command to route private kubernetes services.

Update custom ports location.
Optimize Go programs and add IPv6 to mrmanager.
2024-10-06 21:34:12 -04:00 · 2024-10-06 17:32:07 -04:00 · 2024-10-06 17:32:06 -04:00
7 changed files with 20 additions and 3 deletions
--- a/ansible/roles/firewall/files/mrmanager_pf.conf
+++ b/ansible/roles/firewall/files/mrmanager_pf.conf
@ -33,7 +33,7 @@ scrub in on $ext_if all fragment reassemble
 # redirections
 nat on $ext_if inet from ! ($ext_if) to ! ($ext_if) -> ($ext_if)
-rdr pass proto {tcp, udp} from any to 10.215.1.1 port 53 tag REDIREXTERNAL -> 1.1.1.1 port 53
+rdr pass on jail_nat proto {tcp, udp} from any to 10.215.1.1 port 53 tag REDIREXTERNAL -> 1.1.1.1 port 53
 rdr pass on $ext_if proto {tcp, udp} to ($ext_if) port 6443 -> 10.215.1.204 port 6443
 rdr pass on jail_nat proto {tcp, udp} to ($ext_if) port 6443 tag REDIRINTERNAL -> 10.215.1.204 port 6443
@ -63,6 +63,7 @@ pass quick on $allow
 # Single interface kubernetes cluster is working with the following run on mrmanager:
 #   doas route add -host 74.80.180.139 -interface jail_nat
 #   doas route add -net 10.129.0.0/16 -interface jail_nat
 #   doas sysctl net.link.ether.inet.proxyall=1
 # Plus this in pf.conf:
 #   pass quick from any to 74.80.180.139
--- a/ansible/roles/network/files/mrmanager_network.conf
+++ b/ansible/roles/network/files/mrmanager_network.conf
@ -3,3 +3,4 @@ ifconfig_igb0="up"
 ifconfig_igb1="up"
 ifconfig_lagg0="up laggproto failover laggport igb0 laggport igb1"
 ifconfig_lagg0_alias0="inet 74.80.180.138 netmask 255.255.255.248"
 ifconfig_lagg0_alias1="inet6 2620:11f:7001:7::2/64"
--- a/ansible/roles/network/files/mrmanager_routing.conf
+++ b/ansible/roles/network/files/mrmanager_routing.conf
@ -1,3 +1,4 @@
 defaultrouter="74.80.180.137"
 ipv6_defaultrouter="2620:11f:7001:7::1"
 gateway_enable="YES"
 ipv6_gateway_enable="YES"
--- a/ansible/roles/portshaker/files/myrepo
+++ b/ansible/roles/portshaker/files/myrepo
@ -5,6 +5,6 @@ if [ "$1" != '--' ]; then
 fi
 shift
 method="git"
-git_clone_uri="https://code.fizz.buzz/talexander/ta_ports.git"
+git_clone_uri="https://code.fizz.buzz/talexander/fizzbuzz_ports.git"
-git_branch="master"
+git_branch="main"
 run_portshaker_command $*
--- a/ansible/roles/poudriere/files/poudriere.d/14broadwell-default-computer-make.conf
+++ b/ansible/roles/poudriere/files/poudriere.d/14broadwell-default-computer-make.conf
@ -1,5 +1,12 @@
 CPUTYPE?=broadwell
 # CPU optimizations for go
 .if ${.CURDIR:M*/lang/go*}
 OPTIONS_SET+=V2
 OPTIONS_SET+=V3
 .endif
 # Disable static for subversion because /usr/local/lib/libutf8proc.a not found despite utf8proc being installed
 #
 # Disable static for netpbm because "ld: error: undefined symbol: libdeflate_free_compressor" which is "referenced by tif_zip.o:(ZIPVSetField) in archive /usr/local/lib/libtiff.a"
--- a/ansible/roles/poudriere/files/poudriere.d/currentznver4-default-framework-make.conf
+++ b/ansible/roles/poudriere/files/poudriere.d/currentznver4-default-framework-make.conf
@ -7,6 +7,12 @@ CPUTYPE?=x86-64-v4
 CPUTYPE?=znver4
 .endif
 # CPU optimizations for go
 .if ${.CURDIR:M*/lang/go*}
 OPTIONS_SET+=V2
 OPTIONS_SET+=V3
 OPTIONS_SET+=V4
 .endif
 OPTIONS_SET+=OPTIMIZED_CFLAGS
--- a/ansible/roles/poudriere/files/poudriere.d/currentznver4-default-framework-pkglist
+++ b/ansible/roles/poudriere/files/poudriere.d/currentznver4-default-framework-pkglist
@ -59,6 +59,7 @@ net/rsync
 net/tcpdump
 net/wireguard-tools
 net/wlvncc
 ports-mgmt/modules2tuple
 ports-mgmt/pkg
 ports-mgmt/pkg-provides
 ports-mgmt/portshaker
Author	SHA1	Message	Date
Tom Alexander	5a08b3e0bd	Update command to route private kubernetes services.	2024-10-06 21:34:12 -04:00
Tom Alexander	acf4951047	Update custom ports location.	2024-10-06 17:32:07 -04:00
Tom Alexander	9413f5dce8	Optimize Go programs and add IPv6 to mrmanager.	2024-10-06 17:32:06 -04:00