Saltstack Official Linux Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

219 line
6.0KB

  1. {%- from "linux/map.jinja" import network with context %}
  2. {%- from "linux/map.jinja" import system with context %}
  3. {%- if network.enabled %}
  4. {%- macro set_param(param_name, param_dict) -%}
  5. {%- if param_dict.get(param_name, False) -%}
  6. - {{ param_name }}: {{ param_dict[param_name] }}
  7. {%- endif -%}
  8. {%- endmacro -%}
  9. {%- if network.bridge != 'none' %}
  10. linux_network_bridge_pkgs:
  11. pkg.installed:
  12. {%- if network.bridge == 'openvswitch' %}
  13. - names: {{ network.ovs_pkgs }}
  14. {%- else %}
  15. - names: {{ network.bridge_pkgs }}
  16. {%- endif %}
  17. {%- endif %}
  18. {%- if not network.network_manager %}
  19. {# TODO stop/disable/uninstall network manager #}
  20. {%- for interface_name, interface in network.interface.iteritems() %}
  21. {%- if interface.get('managed', True) %}
  22. {%- if grains.os_family in ['RedHat', 'Debian'] %}
  23. {%- if interface.type == 'bridge' and network.bridge == 'openvswitch' %}
  24. linux_interface_{{ interface_name }}:
  25. network.managed:
  26. - enabled: {{ interface.enabled }}
  27. - name: {{ interface_name }}
  28. - type: eth
  29. {%- if interface.address is defined %}
  30. - proto: {{ interface.get('proto', 'static') }}
  31. - ipaddr: {{ interface.address }}
  32. - netmask: {{ interface.netmask }}
  33. {%- else %}
  34. - proto: {{ interface.get('proto', 'dhcp') }}
  35. {%- endif %}
  36. {%- if interface.name_servers is defined %}
  37. - dns: {{ interface.name_servers }}
  38. {%- endif %}
  39. {%- for param in network.interface_params %}
  40. {{ set_param(param, interface) }}
  41. {%- endfor %}
  42. {%- if interface.wireless is defined and grains.os_family == 'Debian' %}
  43. {%- if interface.wireless.security == "wpa" %}
  44. - wpa-ssid: {{ interface.wireless.essid }}
  45. - wpa-psk: {{ interface.wireless.key }}
  46. {%- else %}
  47. - wireless-ssid: {{ interface.wireless.essid }}
  48. - wireless-psk: {{ interface.wireless.key }}
  49. {%- endif %}
  50. {%- endif %}
  51. - require:
  52. - pkg: linux_network_bridge_pkgs
  53. {%- for network in interface.use_interfaces %}
  54. - network: linux_interface_{{ network }}
  55. {%- endfor %}
  56. linux_ovs_bridge_{{ interface_name }}:
  57. cmd.run:
  58. - name: ovs-vsctl add-br {{ interface_name }}
  59. - unless: ovs-vsctl show | grep 'Bridge {{ interface_name }}'
  60. - require:
  61. - network: linux_interface_{{ interface_name }}
  62. {%- for port in interface.use_interfaces %}
  63. linux_ovs_bridge_{{ interface_name }}_port_{{ port }}:
  64. cmd.run:
  65. - name: ovs-vsctl add-port {{ interface_name }} {{ port }}
  66. - unless: ovs-vsctl show | grep 'Interface "{{ interface_name }}"'
  67. - require:
  68. - cmd: linux_ovs_bridge_{{ interface_name }}
  69. {%- endfor %}
  70. {%- else %}
  71. linux_interface_{{ interface_name }}:
  72. network.managed:
  73. - enabled: {{ interface.enabled }}
  74. - name: {{ interface_name }}
  75. - type: {{ interface.type }}
  76. {%- if interface.address is defined %}
  77. {%- if grains.os_family == 'Debian' %}
  78. - proto: {{ interface.get('proto', 'static') }}
  79. {% endif %}
  80. {%- if grains.os_family == 'RedHat' %}
  81. - proto: {{ interface.get('proto', 'none') }}
  82. {% endif %}
  83. - ipaddr: {{ interface.address }}
  84. - netmask: {{ interface.netmask }}
  85. {%- else %}
  86. - proto: {{ interface.get('proto', 'dhcp') }}
  87. {%- endif %}
  88. {%- if interface.name_servers is defined %}
  89. - dns: {{ interface.name_servers }}
  90. {%- endif %}
  91. {%- if interface.wireless is defined and grains.os_family == 'Debian' %}
  92. {%- if interface.wireless.security == "wpa" %}
  93. - wpa-ssid: {{ interface.wireless.essid }}
  94. - wpa-psk: {{ interface.wireless.key }}
  95. {%- else %}
  96. - wireless-ssid: {{ interface.wireless.essid }}
  97. - wireless-psk: {{ interface.wireless.key }}
  98. {%- endif %}
  99. {%- endif %}
  100. {%- for param in network.interface_params %}
  101. {{ set_param(param, interface) }}
  102. {%- endfor %}
  103. {%- if interface.type == 'bridge' %}
  104. - bridge: {{ interface_name }}
  105. - delay: 0
  106. - bypassfirewall: True
  107. - use:
  108. {%- for network in interface.use_interfaces %}
  109. - network: linux_interface_{{ network }}
  110. {%- endfor %}
  111. - ports: {% for network in interface.use_interfaces %}{{ network }} {% endfor %}
  112. - require:
  113. {%- for network in interface.use_interfaces %}
  114. - network: linux_interface_{{ network }}
  115. {%- endfor %}
  116. {%- endif %}
  117. {%- if interface.type == 'bond' %}
  118. - slaves: {{ interface.slaves }}
  119. - mode: {{ interface.mode }}
  120. {%- endif %}
  121. {%- if interface.gateway is defined %}
  122. linux_system_network:
  123. network.system:
  124. - enabled: {{ interface.enabled }}
  125. - hostname: {{ network.fqdn }}
  126. {%- if interface.gateway is defined %}
  127. - gateway: {{ interface.gateway }}
  128. - gatewaydev: {{ interface_name }}
  129. {%- endif %}
  130. - nozeroconf: True
  131. - nisdomain: {{ system.domain }}
  132. - require_reboot: False
  133. {%- endif %}
  134. {%- endif %}
  135. {%- endif %}
  136. {%- if interface.wireless is defined %}
  137. {%- if grains.os_family == 'Arch' %}
  138. linux_network_packages:
  139. pkg.installed:
  140. - names: {{ network.pkgs }}
  141. /etc/netctl/network_{{ interface.wireless.essid }}:
  142. file.managed:
  143. - source: salt://linux/files/wireless
  144. - mode: 755
  145. - template: jinja
  146. - require:
  147. - pkg: linux_network_packages
  148. - defaults:
  149. interface_name: {{ interface_name }}
  150. switch_profile_{{ interface.wireless.essid }}:
  151. cmd.run:
  152. - name: netctl switch-to network_{{ interface.wireless.essid }}
  153. - cwd: /root
  154. - unless: "iwconfig {{ interface_name }} | grep -e 'ESSID:\"{{ interface.wireless.essid }}\"'"
  155. - require:
  156. - file: /etc/netctl/network_{{ interface.wireless.essid }}
  157. enable_profile_{{ interface.wireless.essid }}:
  158. cmd.run:
  159. - name: netctl enable network_{{ interface.wireless.essid }}
  160. - cwd: /root
  161. - unless: test -e /etc/systemd/system/multi-user.target.wants/netctl@network_{{ interface.wireless.essid }}.service
  162. - require:
  163. - file: /etc/netctl/network_{{ interface.wireless.essid }}
  164. {%- endif %}
  165. {%- endif %}
  166. {%- endif %}
  167. {%- if interface.route is defined %}
  168. linux_network_{{ interface_name }}_routes:
  169. network.routes:
  170. - name: {{ interface_name }}
  171. - routes:
  172. {%- for route_name, route in interface.route.iteritems() %}
  173. - name: {{ route_name }}
  174. ipaddr: {{ route.address }}
  175. netmask: {{ route.netmask }}
  176. gateway: {{ route.gateway }}
  177. {%- endfor %}
  178. {%- endif %}
  179. {%- endfor %}
  180. {%- endif %}
  181. {%- endif %}