mirror of
https://git.fsfe.org/fsfe-system-hackers/innernet-playbook.git
synced 2024-11-22 06:33:11 +01:00
62 lines
1.5 KiB
YAML
62 lines
1.5 KiB
YAML
---
|
|
# interface/innernet parent network name
|
|
network_name: "fsfe"
|
|
# 10.200.0.1 to 10.200.255.254
|
|
# 65,536 usable IP addresses
|
|
network_cidr: "10.200.0.0/16"
|
|
# wiregaurd listening port
|
|
network_listen_port_clients: "51820"
|
|
network_listen_port_server: "51820"
|
|
cidrs:
|
|
## humans
|
|
## 10.200.16.1 to 10.200.31.254
|
|
## 4,096 usable IP addresses
|
|
humans:
|
|
parent: fsfe
|
|
cidr: 10.200.16.0/20
|
|
|
|
### humans > admins
|
|
### 10.200.16.1 to 10.200.19.254
|
|
### 1,024 usable IP addresses
|
|
admins:
|
|
parent: humans
|
|
cidr: 10.200.16.0/22
|
|
|
|
### humans > others
|
|
### 10.200.20.1 to 10.200.23.254
|
|
### 1,024 usable IP addresses
|
|
others:
|
|
parent: humans
|
|
cidr: 10.200.20.0/22
|
|
|
|
## machines
|
|
## 10.200.64.1 to 10.200.127.254
|
|
## with 16,384 usable IP addresses
|
|
machines:
|
|
parent: fsfe
|
|
cidr: 10.200.64.0/18
|
|
|
|
# name of the CIDR you want to use for the client role,
|
|
# so automatically configured peers (typically VMs)
|
|
machine_cidr: machines
|
|
|
|
# Peers that are configured manually, typically humans. The created invitation
|
|
# file will be stored on the controller machines and has to be imported on the
|
|
# person's computer manually.
|
|
# * the key (e.g. "linus") is limited to alphanumeric chars and dashes, no dots
|
|
# * "cidr" is the name of the CIDR the user shall belong to
|
|
# * "admin" defines whether peer should be an admin (true/false). Default: false
|
|
manual_peers:
|
|
linus:
|
|
cidr: admins
|
|
admin: true
|
|
linus-kronos:
|
|
cidr: admins
|
|
admin: true
|
|
max-mehl:
|
|
cidr: admins
|
|
admin: true
|
|
albert:
|
|
cidr: admins
|
|
admin: true
|