/hooks/group-modify-post.d/snf-network - snf-network - Greek Research and Technology Network's projects

root / hooks / group-modify-post.d / snf-network @ ed7f0f2a

History | View | Annotate | Download (2.7 kB)

       #!/bin/bash
       source /etc/default/snf-network
       GROUP=$GANETI_GROUP_NAME
       ACTION=$GANETI_GROUP_NETWORK_ACTION
       NETWORK=$GANETI_GROUP_NETWORK_NAME
       MODE=$GANETI_GROUP_NETWORK_MODE
       LINK=$GANETI_GROUP_NETWORK_LINK
       if [ -z $ACTION ]; then
         exit 0
       fi
       NETFILE=$SHAREDDIR/networks/$NETWORK
       MAPFILE=$SHAREDDIR/mappings/$NETWORK-$GROUP
       function set_rt_table {
         ID=$(sed  -n '/^$/ { =; q}' /etc/iproute2/rt_tables)
         if [ -z $ID ]; then
           ID=$(wc -l /etc/iproute2/rt_tables)
           echo $((ID+1)) rt_$NETWORK > /etc/iproute2/rt_tables
         else
           sed -i '1,/^$/ s/^$/'"$ID"' rt_'"$NETWORK"'/' /etc/iproute2/rt_tables
         fi
+      }
       if [ $ACTION == "add" ]; then
         if [ $MODE == "routed" ]; then
           VLAN=$LINK
           if [ $TYPE == "public" ]; then
             ARP_IP=$(ipcalc $SUBNET | grep HostMax | awk '{print $2}')
             ip link set $VLAN up
             echo 1 > "/proc/sys/net/ipv4/conf/$VLAN/proxy_arp"
             set_rt_table
             ip rule add iif $VLAN table rt_$NETWORK
             ip route add $SUBNET dev $VLAN table main
             ip route add $SUBNET dev $VLAN table rt_$NETWORK
             ip route add default via $GATEWAY dev $VLAN table rt_$NETWORK
             echo 1 > /proc/sys/net/ipv4/conf/all/forwarding
             arptables -A OUTPUT -o $VLAN --opcode request -j mangle --mangle-ip-s  $ARP_IP
           fi
         fi
         if [ $MODE == "bridged" ]; then
           BRIDGE=$LINK
           if [ ! -z $GATEWAY ]; then
             if [ $TYPE == "private" ]; then
               if [ $(hostname) == $ROUTER ]; then
                 NETMASK=$(ipcalc $SUBNET | grep Netmask | awk '{print $4}')
                 ip addr add $GATEWAY/$NETMASK dev $BRIDGE
                 iptables -t nat -A POSTROUTING -s $SUBNET \! -d 192.168.0.0/16 -j MASQUERADE
               fi
             fi
           fi
         fi
         cat > $MAPFILE <<EOF
       MODE=$MODE
       LINK=$LINK
       EOF
       else
         source $MAPFILE
         if [ "$MODE" == "routed" ]; then
           VLAN=$LINK
           TABLE=rt_$NETWORK
           if [ $TYPE == "public" ]; then
             ARP_IP=$(ipcalc $SUBNET | grep HostMax | awk '{print $2}')
             arptables -D OUTPUT -o $VLAN --opcode request -j mangle --mangle-ip-s  $ARP_IP
             ip route del default via $GATEWAY dev $VLAN table $TABLE
             ip route del $SUBNET dev $VLAN table $TABLE
             ip route del $SUBNET dev $VLAN table main
             ip rule del iif $VLAN table $TABLE
             sed -i 's/.*'"$TABLE"'$//' /etc/iproute2/rt_tables
           fi
         fi
         if [ "$MODE" == "bridged" ]; then
           BRIDGE=$LINK
           if [ ! -z $GATEWAY ]; then
             if [ $TYPE == "private" ]; then
               if [ $(hostname) == $ROUTER ]; then
                 NETMASK=$(ipcalc $SUBNET | grep Netmask | awk '{print $4}')
                 ip addr del $GATEWAY/$NETMASK dev $BRIDGE
                 iptables -t nat -D POSTROUTING -s $SUBNET \! -d 192.168.0.0/16 -j MASQUERADE
               fi
             fi
           fi
         fi
         rm $MAPFILE
       fi

Synnefo » snf-network

root / hooks / group-modify-post.d / snf-network @ ed7f0f2a