Skip to content
/ wizznet-cloud-salt Public

Jon's testbed (Work in progress) ovh cloud server deployment lab

2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bodleytunes/wizznet-cloud-salt

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
_grains
_grains
 
 
_modules
_modules
 
 
ansible
ansible
 
 
formulas
formulas
 
 
pillar
pillar
 
 
scripts
scripts
 
 
states
states
 
 
templates
templates
 
 
terraform/proxmox
terraform/proxmox
 
 
README.md
README.md
 
 
_etc_salt_master
_etc_salt_master
 
 
all_hosts_file.sls
all_hosts_file.sls
 
 
all_hosts_file_vms.sls
all_hosts_file_vms.sls
 
 
backblaze_s3fs.sls
backblaze_s3fs.sls
 
 
cloud_init_disable.sls
cloud_init_disable.sls
 
 
configure_haproxy.sls
configure_haproxy.sls
 
 
day_zero_step1.sls
day_zero_step1.sls
 
 
day_zero_step2.sls
day_zero_step2.sls
 
 
dist_upgrade_non_interactive.sls
dist_upgrade_non_interactive.sls
 
 
frr_configuration.sls
frr_configuration.sls
 
 
frr_configuration_lb.sls
frr_configuration_lb.sls
 
 
frr_install.sls
frr_install.sls
 
 
gravity.sls
gravity.sls
 
 
groups_sudo_group.sls
groups_sudo_group.sls
 
 
ifupdown2.sls
ifupdown2.sls
 
 
initial_package_installs.sls
initial_package_installs.sls
 
 
install_docker_ubuntu.sls
install_docker_ubuntu.sls
 
 
install_nftables.sls
install_nftables.sls
 
 
install_pip_packages.sls
install_pip_packages.sls
 
 
install_plex.sls
install_plex.sls
 
 
install_proxmox.sls
install_proxmox.sls
 
 
iptables_legacy.sls
iptables_legacy.sls
 
 
iptables_rules.sls
iptables_rules.sls
 
 
kernel_modules.sls
kernel_modules.sls
 
 
lxd_configuration.sls
lxd_configuration.sls
 
 
lxd_snap.sls
lxd_snap.sls
 
 
lxd_startup.sls
lxd_startup.sls
 
 
minion_control.sls
minion_control.sls
 
 
nano.sls
nano.sls
 
 
networking_config.sls
networking_config.sls
 
 
networking_config_vm.sls
networking_config_vm.sls
 
 
networking_file.sls
networking_file.sls
 
 
nftables_rules.sls
nftables_rules.sls
 
 
proxmox_cloudconfig_snippets.sls
proxmox_cloudconfig_snippets.sls
 
 
proxmox_cluster_create.sls
proxmox_cluster_create.sls
 
 
proxmox_cluster_pre_req.sls
proxmox_cluster_pre_req.sls
 
 
proxmox_configure_vm_startup.sls
proxmox_configure_vm_startup.sls
 
 
proxmox_create_vm_template.sls
proxmox_create_vm_template.sls
 
 
proxmox_create_vm_template_20_04.sls
proxmox_create_vm_template_20_04.sls
 
 
proxmox_create_vm_template_20_04_gluster_cloudinit.sls
proxmox_create_vm_template_20_04_gluster_cloudinit.sls
 
 
proxmox_create_vm_template_20_04_lizardfs.sls
proxmox_create_vm_template_20_04_lizardfs.sls
 
 
proxmox_storage_config.sls
proxmox_storage_config.sls
 
 
proxmox_vm_remove_cloud_init.sls
proxmox_vm_remove_cloud_init.sls
 
 
python_pip.sls
python_pip.sls
 
 
roster
roster
 
 
set_hostname.sls
set_hostname.sls
 
 
set_hostname_proxmox.sls
set_hostname_proxmox.sls
 
 
set_sysctl_conf.sls
set_sysctl_conf.sls
 
 
snap_packages.sls
snap_packages.sls
 
 
ssh_authorized_keys.sls
ssh_authorized_keys.sls
 
 
storage_disk_partitioning.sls
storage_disk_partitioning.sls
 
 
storage_disk_partitioning_create_partitions.sls
storage_disk_partitioning_create_partitions.sls
 
 
storage_disk_partitioning_zpool.sls
storage_disk_partitioning_zpool.sls
 
 
storage_gluster.sls
storage_gluster.sls
 
 
storage_gluster_client.sls
storage_gluster_client.sls
 
 
storage_lvm.sls
storage_lvm.sls
 
 
storage_samba_shares.sls
storage_samba_shares.sls
 
 
terraform.tfstate
terraform.tfstate
 
 
top.sls
top.sls
 
 
ufw.sls
ufw.sls
 
 
ufw_add_rule.sls
ufw_add_rule.sls
 
 
users.sls
users.sls
 
 
users_pve.sls
users_pve.sls
 
 
users_visudo.sls
users_visudo.sls
 
 
users_vm.sls
users_vm.sls
 
 
vim.sls
vim.sls
 
 
zerotier_one_advertise_networks.sls
zerotier_one_advertise_networks.sls
 
 
zerotier_one_authorize.sls
zerotier_one_authorize.sls
 
 
zerotier_one_install.sls
zerotier_one_install.sls
 
 
zerotier_one_restart_service.sls
zerotier_one_restart_service.sls
 
 
zerotier_one_set_ip.sls
zerotier_one_set_ip.sls
 
 
zerotier_one_stage1.sls
zerotier_one_stage1.sls
 
 
zerotier_one_stage2.sls
zerotier_one_stage2.sls
 
 

Repository files navigation

Jon's testbed ovh cloud server deployment lab

Example to deploy to two bare metal OVH via ansible from Day0

  • Deploys servers from bare metal debian 10 buster
  • Install packages, proxmox etc
  • Setup Linux networking and bridges using ifupdown2
  • Setup encrypted overlay networking via Zerotier-One
  • Custom python salt execution module to setup the zerotier Networking, add networks / routes etc
  • Setup inter-host bridge evpn/vxlan overlay via FRR / Free range routing (encapped through Zerotier-one)
  • Setup Proxmox cluster
  • Kernel Modules
  • Disk Partitioning: ZFS zpools and datasets
  • LXD system container install via snap / configure lxc related bridges
  • UFW firewall and NAT ingress rules#
  • Haproxy Load balancers with Anycast Loopbacks advertised into BGP
  • S3FS Backups to backblaze
  • GlusterFS shared storage for stateful apps/storage in rancher/k3s
  • LizardFS shared storage for plex/media programs
  • Users, SSH Keys, login policy
  • Terraform and cloud init templates/images to deploy initial VM's in proxmox
  • Deploy K3s (lightweight kubernetes)
  • Install Rancher on K3s

Work in progress ! :)

Day 0 examples:

Using ansible instead of BASH script

via Ansible -> calling Salt

 pytest -s -m ovh_install
 # ^ wait for install to finish (alteratively just use python command and run the server_install function directly)

 ansible-playbook -i inventory.ini day0_0_deploy.yml --tags p20,p21;
 ansible-playbook -i inventory.ini proxmox_join_cluster.yml --tags join-cluster;
 ansible-playbook proxmox_join_cluster.yml -i inventory.ini --tags create_qnode;
 ansible-playbook day0_1_vm_prereqs.yml -i inventory.ini;
 ansible-playbook -i inventory.ini day0_2_terraform.yml;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube1" ;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube2" ;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube1" --tags networking;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube2" --tags networking;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube1" --tags gluster_client;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube2" --tags gluster_client;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube1" --tags k3s;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube2" --tags k3s;
 ansible-playbook -i inventory.ini day0_3_vm_configuration.yml --extra-vars "current_host=kube1" --tags rancher;

Example to deploy directly via saltstack commands and omit ansible:

salt-ssh -i -L p20,p21 state.apply set_hostname_proxmox
salt-ssh -i -L p20,p21 state.apply all_hosts_file
salt-key -d p20 -y
salt-key -d p21 -y
salt-ssh -i -L p20,p21 state.apply minion_control
salt-key -a p20 -y
salt-key -a p21 -y



salt p21 state.apply initial_package_installs
salt p21 state.apply initial_package_installs
salt p21 state.apply install_proxmox
salt p21 system.reboot

echo "rebooting..."
sleep 300

# the rest (highstate)
salt '*' saltutil.sync_modules

salt p21 state.apply zerotier_one_stage1
salt p21 state.apply zerotier_one_stage2

salt p21 state.apply kernel_modules test=false
salt p21 state.apply disk_partitioning_zpool test=false
salt p21 state.apply lxd_snap test=false
salt p21 state.apply lxd_configuration test=false
salt p21 state.apply ufw test=false
salt p21 state.apply backblaze_s3fs test=false
salt p21 state.apply proxmox_storage_config test=false

salt p21 state.apply networking_file test=false
salt p21 state.apply networking_config test=false

salt p21 state.apply frr_configuration test=false

salt p21 state.apply users test=false

About

Jon's testbed (Work in progress) ovh cloud server deployment lab

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages