diff --git a/install_config/group_vars/platform.yml b/install_config/group_vars/platform.yml new file mode 100644 index 0000000..56ed843 --- /dev/null +++ b/install_config/group_vars/platform.yml @@ -0,0 +1,64 @@ +######################################### +#####0: Pcap; 1: Inline_device; 5:ATCA_VXLAN; +tsg_access_type: 0 + +#####0: in_server 1:in_atca 3: in_adc +##### proxy_topo_type: type of sapp to tfe traffic transport topology (include: in_server_tun,in_atca, in_adc) +proxy_topo_type: 0 + +#####0: pcap; 1: drive(mrzcpd) +##### capture_packet_type : type of the sapp capture packat from nic(include:pcap,drive(mrzcpd)) +capture_packet_type: 0 + +#####0:mirror 1:series +##### traffic_attr_type: type of traffic attribute (include mirror and series) +traffic_attr_type: 0 + +#####0:one-arm 1:two-arms +##### network_topo_type: type of network topology(include: one-arm and two-arms) +network_topo_type: 0 + +#####0:raw 1:vxlan 2:vlan +##### traffic_load_type: type of traffic load(include: raw,vxlan,vlan) +traffic_load_type: 0 + +#####0:server 1:adc 2:atca +#### runtime_env_type: type of program runtime environment(include:server,adc,atca ) +runtime_env_type: 0 + +######################################### +#Sapp Performance Config +#如果capture_packet_type=0,sapp跑在pcap模式,则以下配置可忽略 +sapp: + worker_threads: 23 + send_only_threads_max: 1 + bind_mask: 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 + inbound_route_dir: 1 + +######################################### +#Sapp Double-Arm Config +packet_io: + internal_interface: eth2 + external_interface: eth3 + + +######################################### +#Marsio Config +mrzcpd: + iocore: 39 + +mrtunnat: + lcore_id: 38 + +######################################### +#Inline Device Config +inline_device_config: + keepalive_ip: 192.168.1.30 + keepalive_mask: 255.255.255.252 + data_incoming: eth5 + +######################################### + +sapp_prometheus_enable: 1 +sapp_prometheus_port: 9273 +sapp_prometheus_url_path: "/metrics" diff --git a/install_config/group_vars/server_as_tun_mode.yml b/install_config/group_vars/server_as_tun_mode.yml deleted file mode 100644 index 93466ad..0000000 --- a/install_config/group_vars/server_as_tun_mode.yml +++ /dev/null @@ -1,64 +0,0 @@ -######################################### -#####0: Pcap; 1: Inline_device; 5:ATCA_VXLAN; -tsg_access_type: 0 -#####0: Tun_mode; 1: normal; -tsg_running_type: 0 - - -######################################### -#Sapp Performance Config -#如果tsg_access_type=0,sapp跑在pcap模式,则以下配置可忽略 -sapp: - worker_threads: 23 - send_only_threads_max: 1 - bind_mask: 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 - inbound_route_dir: 1 - -######################################### -#Sapp Double-Arm Config -packet_io: - internal_interface: eth2 - external_interface: eth3 - - -######################################### -#Marsio Config -mrzcpd: - iocore: 39 - -mrtunnat: - lcore_id: 38 - - -######################################### -#ATCA Config -#下列配置只在tsg_access_type=4时生效 -ATCA_data_incoming: - ethname: enp1s0 - vf0_name: enp1s2 - vf1_name: enp1s2f1 - vf2_name: enp1s2f2 - -ATCA_VlanFlipping: - vlanID_1: 100 - vlanID_2: 101 - vlanID_3: 103 - vlanID_4: 104 - -#下列配置只在tsg_access_type=5时生效 -ATCA_VXLAN: - keepalive_ip: "10.254.19.1" - keepalive_mask: "255.255.255.252" - -######################################### -#Inline Device Config -inline_device_config: - keepalive_ip: 192.168.1.30 - keepalive_mask: 255.255.255.252 - data_incoming: eth5 - -######################################### - -sapp_prometheus_enable: 1 -sapp_prometheus_port: 9273 -sapp_prometheus_url_path: "/metrics" diff --git a/roles/kernel-ml/tasks/main.yml b/roles/kernel-ml/tasks/main.yml index 1f13b0f..a386f1c 100644 --- a/roles/kernel-ml/tasks/main.yml +++ b/roles/kernel-ml/tasks/main.yml @@ -19,27 +19,3 @@ - name: "set kernel-ml as default kernel" command: /usr/sbin/grub2-set-default 0 when: t_kernel_ml.changed - -- name: "copy /etc/default/grub" - copy: - src: "{{ role_path }}/files/grub" - dest: "/etc/default" - when: - - tsg_access_type == 4 - - t_kernel_ml.changed - -- name: "BIOS:grub2-mkconfig" - shell: grub2-mkconfig -o /boot/grub2/grub.cfg - when: - - tsg_access_type == 4 - - t_kernel_ml.changed - -- name: "UEFI:grub2-mkconfig" - shell: grub2-mkconfig -o /boot/efi/EFI/centos/grub.cfg - when: - - tsg_access_type == 4 - - t_kernel_ml.changed - -- name: "reboot" - reboot: - when: t_kernel_ml.changed diff --git a/roles/mrzcpd/tasks/main.yml b/roles/mrzcpd/tasks/main.yml index 0b3f708..6a894a6 100644 --- a/roles/mrzcpd/tasks/main.yml +++ b/roles/mrzcpd/tasks/main.yml @@ -14,120 +14,21 @@ src: "{{ role_path }}/templates/mrzcpd.j2" dest: /etc/sysconfig/mrzcpd -- name: "update mrglobal.conf - traffic_mirror" - template: - src: "{{ role_path }}/templates/traffic_mirror/mrglobal.conf.traffic_mirror.j2" - dest: /opt/mrzcpd/etc/mrglobal.conf - when: nic_traffic_mirror is defined - - -- name: "copy mrapp.sapp4.conf to destination server" - template: - src: "{{ role_path }}/templates/mrapp.sapp4.conf " - dest: /opt/mrzcpd/etc/mrapp.sapp4.conf - when: - - tsg_access_type == 4 - -- name: "update mrglobal.conf.adc_inline" - template: - src: "{{ role_path }}/templates/adc_inline/mrglobal.conf.adc_inline.j2" - dest: /opt/mrzcpd/etc/mrglobal.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 1 - - tsg_running_type == 2 - - name: "update mrglobal.conf.server_inline" template: src: "{{ role_path }}/templates/server_inline/mrglobal.conf.server_inline.j2" dest: /opt/mrzcpd/etc/mrglobal.conf when: - - nic_traffic_mirror is not defined - - tsg_access_type == 1 - - tsg_running_type != 2 - -- name: "update mrglobal.conf.allot - mcn0" - template: - src: "{{ role_path }}/templates/allot_access/mrglobal.conf.allot_access.j2" - dest: /opt/mrzcpd/etc/mrglobal.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 2 - -- name: "update mrglobal.conf.adc_tun_mode - mcn0" - template: - src: "{{ role_path }}/templates/adc_tun_mode/mrglobal.conf.adc_tun_mode.j2" - dest: /opt/mrzcpd/etc/mrglobal.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 3 - - -- name: "update mrglobal.conf.ATCA_Vlan_Flipping" - template: - src: "{{ role_path }}/templates/ATCA_Vlan_Flipping/mrglobal.conf.ATCA_Vlan_Flipping.j2" - dest: /opt/mrzcpd/etc/mrglobal.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 4 - -- name: "update mrglobal.conf.ATCA_VXLAN" - template: - src: "{{ role_path }}/templates/ATCA_VXLAN/mrglobal.conf.ATCA_VXLAN.j2" - dest: /opt/mrzcpd/etc/mrglobal.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 5 - -- name: "update mrtunnat.conf.adc_inline" - template: - src: "{{ role_path }}/templates/adc_inline/mrtunnat.conf.adc_inline.j2" - dest: /opt/mrzcpd/etc/mrtunnat.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 1 - - tsg_running_type == 2 + - runtime_env_type == 0 + - capture_packet_type == 1 - name: "update mrtunnat.conf.server_inline" template: src: "{{ role_path }}/templates/server_inline/mrtunnat.conf.server_inline.j2" dest: /opt/mrzcpd/etc/mrtunnat.conf when: - - nic_traffic_mirror is not defined - - tsg_access_type == 1 - - tsg_running_type != 2 - -- name: "update mrtunnat.conf.allot_access - mcn0" - template: - src: "{{ role_path }}/templates/allot_access/mrtunnat.conf.allot_access.j2" - dest: /opt/mrzcpd/etc/mrtunnat.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 2 - -- name: "update mrtunnat.conf.adc_tun_mode - mcn0" - template: - src: "{{ role_path }}/templates/adc_tun_mode/mrtunnat.conf.adc_tun_mode.j2" - dest: /opt/mrzcpd/etc/mrtunnat.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 3 - -- name: "update mrtunnat.conf.ATCA_Vlan_Flipping" - template: - src: "{{ role_path }}/templates/ATCA_Vlan_Flipping/mrtunnat.conf.ATCA_Vlan_Flipping.j2" - dest: /opt/mrzcpd/etc/mrtunnat.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 4 - -- name: "update mrtunnat.conf.ATCA_VXLAN" - template: - src: "{{ role_path }}/templates/ATCA_VXLAN/mrtunnat.conf.ATCA_VXLAN.j2" - dest: /opt/mrzcpd/etc/mrtunnat.conf - when: - - nic_traffic_mirror is not defined - - tsg_access_type == 5 + - runtime_env_type == 0 + - capture_packet_type == 1 - name: "enable mrenv" systemd: @@ -135,7 +36,7 @@ enabled: yes daemon_reload: yes when: - - tsg_access_type != 0 + - capture_packet_type == 1 - name: "enable mrzcpd" systemd: @@ -143,7 +44,7 @@ enabled: yes daemon_reload: yes when: - - tsg_access_type != 0 + - capture_packet_type == 1 - name: "enable prometheus output - monit_device" systemd: @@ -157,32 +58,16 @@ enabled: yes daemon_reload: yes -- name: "enable mrtunnat on master" - systemd: - name: mrtunnat - enabled: no - daemon_reload: yes - when: - - nic_traffic_mirror is not defined - - tsg_access_type != 0 - -- name: "disable mrtunnat on slave" - systemd: - name: mrtunnat - enabled: no - daemon_reload: yes - when: nic_traffic_mirror is defined - -- name: "mask mrzcpd on server_tun_mode" +- name: "mask mrzcpd on capture_packet_type is pcap" systemd: name: mrzcpd enabled: no masked: yes daemon_reload: yes when: - - tsg_access_type == 0 + - capture_packet_type == 0 -- name: "mask mrtunnat on server_tun_mode" +- name: "mask mrtunnat on capture_packet_type is pcap" systemd: name: mrtunnat enabled: no diff --git a/roles/mrzcpd/templates/ATCA_VXLAN/mrglobal.conf.ATCA_VXLAN.j2 b/roles/mrzcpd/templates/ATCA_VXLAN/mrglobal.conf.ATCA_VXLAN.j2 deleted file mode 100644 index f012661..0000000 --- a/roles/mrzcpd/templates/ATCA_VXLAN/mrglobal.conf.ATCA_VXLAN.j2 +++ /dev/null @@ -1,57 +0,0 @@ -[device] -device={{ATCA_data_incoming.vf0_name}},{{ ATCA_data_incoming.vf1_name }},vxlan_user,vxlan_fwd -sz_tunnel=8192 -sz_buffer=32 - -[device:{{ATCA_data_incoming.vf0_name}}] -mtu=4096 -clear_tx_flags=1 -hw_strip_crc=1 -in_addr={{ ATCA_VXLAN.keepalive_ip }} -in_mask={{ ATCA_VXLAN.keepalive_mask }} -#rssmode=3 - -[device:{{ ATCA_data_incoming.vf1_name }}] -mtu=4096 -clear_tx_flags=1 -vlan-filter=1 -vlan-strip=1 -vlan-id-allow=4095 -vlan-pvid=0 -vlan-pvid-mode=2 -hw_strip_crc=1 -sz_tunnel=8192 -sz_buffer=0 - -[service] -# lcore id for i/o service, use comma to split -iocore={{ mrzcpd.iocore }} -distmode=1 -hashmode=0 -idle_threshold=10000 - -[eal] -virtaddr=0x7f40c4a00000 -loglevel=7 - -[keepalive] -check_spinlock=0 - -[ctrlzone] -ctrlzone0=tunnat,64 - -[pool] -create_mode=3 -sz_direct_pktmbuf=4194304 -sz_indirect_pktmbuf=8192 -sz_cache=256 -sz_data=4096 - -[forward] -nr_forward_rule=6 -forward_rule_0=pv,{{ATCA_data_incoming.vf0_name}},{{ATCA_data_incoming.vf0_name}} -forward_rule_1=vp,{{ATCA_data_incoming.vf0_name}},{{ATCA_data_incoming.vf0_name}} -forward_rule_2=vv,vxlan_fwd,vxlan_user -forward_rule_3=vv,vxlan_user,vxlan_fwd -forward_rule_4=pv,{{ ATCA_data_incoming.vf1_name }},{{ ATCA_data_incoming.vf1_name }} -forward_rule_5=vp,{{ ATCA_data_incoming.vf1_name }},{{ ATCA_data_incoming.vf1_name }} diff --git a/roles/mrzcpd/templates/ATCA_VXLAN/mrtunnat.conf.ATCA_VXLAN.j2 b/roles/mrzcpd/templates/ATCA_VXLAN/mrtunnat.conf.ATCA_VXLAN.j2 deleted file mode 100644 index ac710dd..0000000 --- a/roles/mrzcpd/templates/ATCA_VXLAN/mrtunnat.conf.ATCA_VXLAN.j2 +++ /dev/null @@ -1,20 +0,0 @@ -[tunnat] -lcore_id={{ mrtunnat.lcore_id }} -appsym=tunnat -phydev={{ATCA_data_incoming.vf0_name}} -virtdev=vxlan_fwd -nr_max_sessions=524280 -nr_slots=1048576 -expire_time=60 -reverse_tunnel=0 -use_recent_tunnel=0 -use_link_info_table=1 -use_tuple4_as_sskey=0 -ctrlzone_addr_info_type=2 -idle_threshold=10000 - -[vlan_flipping] -enable=0 -c_router_vlan_id_0=1000 -i_router_vlan_id_0=1001 -en_mac_flipping_0=0 diff --git a/roles/mrzcpd/templates/ATCA_Vlan_Flipping/mrglobal.conf.ATCA_Vlan_Flipping.j2 b/roles/mrzcpd/templates/ATCA_Vlan_Flipping/mrglobal.conf.ATCA_Vlan_Flipping.j2 deleted file mode 100644 index 01e6543..0000000 --- a/roles/mrzcpd/templates/ATCA_Vlan_Flipping/mrglobal.conf.ATCA_Vlan_Flipping.j2 +++ /dev/null @@ -1,60 +0,0 @@ -[device] -device={{ATCA_data_incoming.vf0_name}},{{ ATCA_data_incoming.vf1_name }},vxlan_user,vxlan_fwd -sz_tunnel=8192 -sz_buffer=32 - -[device:{{ATCA_data_incoming.vf0_name}}] -mtu=4096 -clear_tx_flags=1 -vlan-filter=1 -vlan-strip=1 -vlan-id-allow={{ ATCA_VlanFlipping.vlanID_1 }},{{ ATCA_VlanFlipping.vlanID_2 }},{{ ATCA_VlanFlipping.vlanID_3 }},{{ ATCA_VlanFlipping.vlanID_4 }} -vlan-pvid=0 -vlan-pvid-mode=2 -hw_strip_crc=1 -#rssmode=3 - -[device:{{ ATCA_data_incoming.vf1_name }}] -mtu=4096 -clear_tx_flags=1 -vlan-filter=1 -vlan-strip=1 -vlan-id-allow=4095 -vlan-pvid=0 -vlan-pvid-mode=2 -hw_strip_crc=1 -sz_tunnel=8192 -sz_buffer=0 - -[service] -# lcore id for i/o service, use comma to split -iocore={{ mrzcpd.iocore }} -distmode=1 -hashmode=0 -idle_threshold=10000 - -[eal] -virtaddr=0x7f40c4a00000 -loglevel=7 - -[keepalive] -check_spinlock=0 - -[ctrlzone] -ctrlzone0=tunnat,64 - -[pool] -create_mode=3 -sz_direct_pktmbuf=4194304 -sz_indirect_pktmbuf=8192 -sz_cache=256 -sz_data=4096 - -[forward] -nr_forward_rule=6 -forward_rule_0=pv,{{ATCA_data_incoming.vf0_name}},{{ATCA_data_incoming.vf0_name}} -forward_rule_1=vp,{{ATCA_data_incoming.vf0_name}},{{ATCA_data_incoming.vf0_name}} -forward_rule_2=vv,vxlan_fwd,vxlan_user -forward_rule_3=vv,vxlan_user,vxlan_fwd -forward_rule_4=pv,{{ ATCA_data_incoming.vf1_name }},{{ ATCA_data_incoming.vf1_name }} -forward_rule_5=vp,{{ ATCA_data_incoming.vf1_name }},{{ ATCA_data_incoming.vf1_name }} diff --git a/roles/mrzcpd/templates/ATCA_Vlan_Flipping/mrtunnat.conf.ATCA_Vlan_Flipping.j2 b/roles/mrzcpd/templates/ATCA_Vlan_Flipping/mrtunnat.conf.ATCA_Vlan_Flipping.j2 deleted file mode 100644 index 95f1734..0000000 --- a/roles/mrzcpd/templates/ATCA_Vlan_Flipping/mrtunnat.conf.ATCA_Vlan_Flipping.j2 +++ /dev/null @@ -1,23 +0,0 @@ -[tunnat] -lcore_id={{ mrtunnat.lcore_id }} -appsym=tunnat -phydev={{ATCA_data_incoming.vf0_name}} -virtdev=vxlan_fwd -nr_max_sessions=524280 -nr_slots=1048576 -expire_time=60 -reverse_tunnel=0 -use_recent_tunnel=0 -use_link_info_table=1 -use_tuple4_as_sskey=0 -ctrlzone_addr_info_type=2 -idle_threshold=10000 - -[vlan_flipping] -enable=1 -c_router_vlan_id_0={{ ATCA_VlanFlipping.vlanID_1 }} -i_router_vlan_id_0={{ ATCA_VlanFlipping.vlanID_2 }} -en_mac_flipping_0=0 -c_router_vlan_id_1={{ ATCA_VlanFlipping.vlanID_3 }} -i_router_vlan_id_1={{ ATCA_VlanFlipping.vlanID_4 }} -en_mac_flipping_1=0 diff --git a/roles/mrzcpd/templates/adc_inline/mrglobal.conf.adc_inline.j2 b/roles/mrzcpd/templates/adc_inline/mrglobal.conf.adc_inline.j2 deleted file mode 100644 index a80a483..0000000 --- a/roles/mrzcpd/templates/adc_inline/mrglobal.conf.adc_inline.j2 +++ /dev/null @@ -1,67 +0,0 @@ -[device] -device={{nic_data_incoming.name}},{{nic_to_tfe.tfe0.name}},{{nic_to_tfe.tfe1.name}},{{nic_to_tfe.tfe2.name}},vxlan_user,vxlan_fwd -sz_tunnel=8192 -sz_buffer=0 - -[device:{{nic_data_incoming.name}}] -in_addr={{inline_device_config.keepalive_ip}} -in_mask={{inline_device_config.keepalive_mask}} -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -vlan-filter=1 -vlan-id-allow=1000,1001,4000,4001 - -[device:{{nic_to_tfe.tfe0.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[device:{{nic_to_tfe.tfe1.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[device:{{nic_to_tfe.tfe2.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[service] -# lcore id for i/o service, use comma to split -iocore={{ mcn0_mrzcpd.iocore }} -distmode=2 -hashmode=0 - -[eal] -virtaddr=0x7f40c4a00000 -loglevel=7 - -[keepalive] -check_spinlock=0 - -[ctrlzone] -ctrlzone0=tunnat,64 - -[pool] -create_mode=3 -sz_direct_pktmbuf=4194304 -sz_indirect_pktmbuf=8192 -sz_cache=256 -sz_data=4096 - -[forward] -nr_forward_rule=10 -forward_rule_0=pv,{{nic_data_incoming.name}},{{nic_data_incoming.name}} -forward_rule_1=vp,{{nic_data_incoming.name}},{{nic_data_incoming.name}} -forward_rule_2=vv,vxlan_fwd,vxlan_user -forward_rule_3=vv,vxlan_user,vxlan_fwd -forward_rule_4=pv,{{nic_to_tfe.tfe0.name}},{{nic_to_tfe.tfe0.name}} -forward_rule_5=vp,{{nic_to_tfe.tfe0.name}},{{nic_to_tfe.tfe0.name}} -forward_rule_6=pv,{{nic_to_tfe.tfe1.name}},{{nic_to_tfe.tfe1.name}} -forward_rule_7=vp,{{nic_to_tfe.tfe1.name}},{{nic_to_tfe.tfe1.name}} -forward_rule_8=pv,{{nic_to_tfe.tfe2.name}},{{nic_to_tfe.tfe2.name}} -forward_rule_9=vp,{{nic_to_tfe.tfe2.name}},{{nic_to_tfe.tfe2.name}} diff --git a/roles/mrzcpd/templates/adc_inline/mrtunnat.conf.adc_inline.j2 b/roles/mrzcpd/templates/adc_inline/mrtunnat.conf.adc_inline.j2 deleted file mode 100644 index 6c8f5be..0000000 --- a/roles/mrzcpd/templates/adc_inline/mrtunnat.conf.adc_inline.j2 +++ /dev/null @@ -1,21 +0,0 @@ -[tunnat] -lcore_id={{ mrtunnat.lcore_id }} -appsym=tunnat -phydev={{nic_data_incoming.name}} -virtdev=vxlan_fwd -nr_max_sessions=524280 -nr_slots=1048576 -expire_time=60 -reverse_tunnel=0 -use_recent_tunnel=0 -use_tuple4_as_sskey=1 -ctrlzone_addr_info_type=2 - -[vlan_flipping] -enable=1 -c_router_vlan_id_0=1000 -i_router_vlan_id_0=1001 -en_mac_flipping_0=0 -c_router_vlan_id_1=4000 -i_router_vlan_id_1=4001 -en_mac_flipping_1=0 diff --git a/roles/mrzcpd/templates/adc_tun_mode/mrglobal.conf.adc_tun_mode.j2 b/roles/mrzcpd/templates/adc_tun_mode/mrglobal.conf.adc_tun_mode.j2 deleted file mode 100644 index 032a1c4..0000000 --- a/roles/mrzcpd/templates/adc_tun_mode/mrglobal.conf.adc_tun_mode.j2 +++ /dev/null @@ -1,68 +0,0 @@ -[device] -device={{nic_data_incoming.name}},{{nic_to_tfe.tfe0.name}},{{nic_to_tfe.tfe1.name}},{{nic_to_tfe.tfe2.name}},vxlan_user,vxlan_fwd -sz_tunnel=8192 -sz_buffer=0 - -[device:{{nic_data_incoming.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -vlan-filter=1 -vlan-id-allow=1000,1001,2000,2001,4000,4001 -vlan-pvid=0 -vlan-pvid-mode=2 -promisc=1 - -[device:{{nic_to_tfe.tfe0.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[device:{{nic_to_tfe.tfe1.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[device:{{nic_to_tfe.tfe2.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[service] -# lcore id for i/o service, use comma to split -iocore={{ mrzcpd.iocore }} -distmode=2 -hashmode=0 - -[eal] -virtaddr=0x7f40c4a00000 -loglevel=7 - -[keepalive] -check_spinlock=0 - -[ctrlzone] -ctrlzone0=tunnat,64 - -[pool] -create_mode=3 -sz_direct_pktmbuf=4194304 -sz_indirect_pktmbuf=8192 -sz_cache=256 -sz_data=4096 - -[forward] -nr_forward_rule=10 -forward_rule_0=pv,{{nic_data_incoming.name}},{{nic_data_incoming.name}} -forward_rule_1=vp,{{nic_data_incoming.name}},{{nic_data_incoming.name}} -forward_rule_2=vv,vxlan_fwd,vxlan_user -forward_rule_3=vv,vxlan_user,vxlan_fwd -forward_rule_4=pv,{{nic_to_tfe.tfe0.name}},{{nic_to_tfe.tfe0.name}} -forward_rule_5=vp,{{nic_to_tfe.tfe0.name}},{{nic_to_tfe.tfe0.name}} -forward_rule_6=pv,{{nic_to_tfe.tfe1.name}},{{nic_to_tfe.tfe1.name}} -forward_rule_7=vp,{{nic_to_tfe.tfe1.name}},{{nic_to_tfe.tfe1.name}} -forward_rule_8=pv,{{nic_to_tfe.tfe2.name}},{{nic_to_tfe.tfe2.name}} -forward_rule_9=vp,{{nic_to_tfe.tfe2.name}},{{nic_to_tfe.tfe2.name}} diff --git a/roles/mrzcpd/templates/adc_tun_mode/mrtunnat.conf.adc_tun_mode.j2 b/roles/mrzcpd/templates/adc_tun_mode/mrtunnat.conf.adc_tun_mode.j2 deleted file mode 100644 index 19971c6..0000000 --- a/roles/mrzcpd/templates/adc_tun_mode/mrtunnat.conf.adc_tun_mode.j2 +++ /dev/null @@ -1,24 +0,0 @@ -[tunnat] -lcore_id={{ mrtunnat.lcore_id }} -appsym=tunnat -phydev={{nic_data_incoming.name}} -virtdev=vxlan_fwd -nr_max_sessions=524280 -nr_slots=1048576 -expire_time=60 -reverse_tunnel=0 -use_recent_tunnel=0 -use_tuple4_as_sskey=1 -ctrlzone_addr_info_type=2 - -[vlan_flipping] -enable=1 -c_router_vlan_id_0=1000 -i_router_vlan_id_0=1001 -en_mac_flipping_0=0 -c_router_vlan_id_1=2000 -i_router_vlan_id_1=2001 -en_mac_flipping_1=0 -c_router_vlan_id_2=4000 -i_router_vlan_id_2=4001 -en_mac_flipping_2=0 diff --git a/roles/mrzcpd/templates/allot_access/mrglobal.conf.allot_access.j2 b/roles/mrzcpd/templates/allot_access/mrglobal.conf.allot_access.j2 deleted file mode 100644 index 245aecc..0000000 --- a/roles/mrzcpd/templates/allot_access/mrglobal.conf.allot_access.j2 +++ /dev/null @@ -1,69 +0,0 @@ -[device] -device=ens1f4,ens1f5,ens1f6,ens1f7,vxlan_user,vxlan_fwd -sz_tunnel=8192 -sz_buffer=0 - -[device:ens1f4] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -vlan-filter=1 -vlan-id-allow={{ AllotAccess.virturlID_1 }},{{ AllotAccess.virturlID_2 }},{{ AllotAccess.virturlID_3 }},{{ AllotAccess.virturlID_4 }},4000,4001 -vlan-pvid=0 -vlan-pvid-mode=2 -promisc=1 - -[device:ens1f5] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[device:ens1f6] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[device:ens1f7] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[service] -# lcore id for i/o service, use comma to split -iocore={{ mcn0_mrzcpd.iocore }} -distmode=2 -hashmode=0 - -[eal] -virtaddr=0x7f40c4a00000 -loglevel=7 - -[keepalive] -check_spinlock=0 - -[ctrlzone] -ctrlzone0=tunnat,64 - -[pool] -create_mode=3 -sz_direct_pktmbuf=4194304 -sz_indirect_pktmbuf=8192 -sz_cache=256 -sz_data=4096 - -[forward] -nr_forward_rule=10 -forward_rule_0=pv,ens1f4,ens1f4 -forward_rule_1=vp,ens1f4,ens1f4 -forward_rule_2=vv,vxlan_fwd,vxlan_user -forward_rule_3=vv,vxlan_user,vxlan_fwd -forward_rule_4=pv,ens1f5,ens1f5 -forward_rule_5=vp,ens1f5,ens1f5 -forward_rule_6=pv,ens1f6,ens1f6 -forward_rule_7=vp,ens1f6,ens1f6 -forward_rule_8=pv,ens1f7,ens1f7 -forward_rule_9=vp,ens1f7,ens1f7 - diff --git a/roles/mrzcpd/templates/allot_access/mrtunnat.conf.allot_access.j2 b/roles/mrzcpd/templates/allot_access/mrtunnat.conf.allot_access.j2 deleted file mode 100644 index a0841d6..0000000 --- a/roles/mrzcpd/templates/allot_access/mrtunnat.conf.allot_access.j2 +++ /dev/null @@ -1,25 +0,0 @@ -[tunnat] -lcore_id={{ mrtunnat.lcore_id }} -appsym=tunnat -phydev=ens1f4 -virtdev=vxlan_fwd -nr_max_sessions=524280 -nr_slots=1048576 -expire_time=60 -reverse_tunnel=0 -use_recent_tunnel=0 -use_tuple4_as_sskey=1 -ctrlzone_addr_info_type=2 - -[vlan_flipping] -enable=1 -c_router_vlan_id_0={{ AllotAccess.virturlID_1 }} -i_router_vlan_id_0={{ AllotAccess.virturlID_2 }} -en_mac_flipping_0=1 -c_router_vlan_id_1={{ AllotAccess.virturlID_3 }} -i_router_vlan_id_1={{ AllotAccess.virturlID_4 }} -en_mac_flipping_1=1 -c_router_vlan_id_2=4000 -i_router_vlan_id_2=4001 -en_mac_flipping_2=0 - diff --git a/roles/mrzcpd/templates/mrapp.sapp4.conf b/roles/mrzcpd/templates/mrapp.sapp4.conf deleted file mode 100644 index 6f6c944..0000000 --- a/roles/mrzcpd/templates/mrapp.sapp4.conf +++ /dev/null @@ -1,2 +0,0 @@ -[bpfdump:vxlan_user] -enable=1 diff --git a/roles/mrzcpd/templates/server_inline/mrglobal.conf.server_inline.j2 b/roles/mrzcpd/templates/server_inline/mrglobal.conf.server_inline.j2 index b5cef2d..2c87167 100644 --- a/roles/mrzcpd/templates/server_inline/mrglobal.conf.server_inline.j2 +++ b/roles/mrzcpd/templates/server_inline/mrglobal.conf.server_inline.j2 @@ -4,8 +4,10 @@ sz_tunnel=8192 sz_buffer=0 [device:{{inline_device_config.data_incoming}}] +{% if traffic_attr_type == 0 %} in_addr={{inline_device_config.keepalive_ip}} in_mask={{inline_device_config.keepalive_mask}} +{% endif %} jumbo_frame=1 max_rx_pkt_len=15360 clear_tx_flags=1 diff --git a/roles/mrzcpd/templates/traffic_mirror/mrglobal.conf.traffic_mirror.j2 b/roles/mrzcpd/templates/traffic_mirror/mrglobal.conf.traffic_mirror.j2 deleted file mode 100644 index 00e70ab..0000000 --- a/roles/mrzcpd/templates/traffic_mirror/mrglobal.conf.traffic_mirror.j2 +++ /dev/null @@ -1,27 +0,0 @@ -[device] -device={{nic_traffic_mirror.name}} -sz_tunnel=8192 -sz_buffer=0 - -[device:{{nic_traffic_mirror.name}}] -jumbo_frame=1 -max_rx_pkt_len=15360 -clear_tx_flags=1 -promisc=1 - -[service] -iocore={{ mcn123_mrzcpd.iocore }} - -[eal] -virtaddr=0x7d0000000000 -loglevel=7 - -[keepalive] -check_spinlock=1 - -[pool] -create_mode=3 -sz_direct_pktmbuf=4194304 -sz_indirect_pktmbuf=8192 -sz_cache=256 -sz_data=4096 diff --git a/roles/sapp/files/tera_fake_promisc_setup.conf b/roles/sapp/files/tera_fake_promisc_setup.conf deleted file mode 100644 index f505012..0000000 --- a/roles/sapp/files/tera_fake_promisc_setup.conf +++ /dev/null @@ -1,2 +0,0 @@ -[Service] -ExecStartPre=/bin/bash tera_fake_promisc_setup.sh diff --git a/roles/sapp/files/tera_fake_promisc_setup.sh b/roles/sapp/files/tera_fake_promisc_setup.sh deleted file mode 100644 index 4e8665a..0000000 --- a/roles/sapp/files/tera_fake_promisc_setup.sh +++ /dev/null @@ -1,4 +0,0 @@ -set -ex -dp_adapter_ether_addr=$(ifconfig ens1f2 | grep ether | awk '{print $2}') -bpf_rule="ether dst $dp_adapter_ether_addr or ether dst 02:42:c0:a8:fd:03 or ether dst 02:42:c0:a8:fd:83 or ether dst 02:42:c0:a8:fd:82" -sed -i "/BSD_packet_filter=/s/=.*/=\"$bpf_rule\"/" etc/sapp.toml diff --git a/roles/sapp/tasks/main.yml b/roles/sapp/tasks/main.yml index 3b7dd38..ac15ac3 100644 --- a/roles/sapp/tasks/main.yml +++ b/roles/sapp/tasks/main.yml @@ -58,19 +58,6 @@ dest: /etc/tmpfiles.d/sapp_tmpfile.conf tags: template -- name: Template the gdev.conf - template: - src: "{{ role_path }}/templates/gdev.conf.j2" - dest: /home/mesasoft/sapp_run/etc/gdev.conf - when: tsg_access_type == 1 - -- name: Template the vlan_flipping_map.conf - template: - src: "{{ role_path }}/templates/vlan_flipping_map.conf.j2" - dest: /home/mesasoft/sapp_run/etc/vlan_flipping_map.conf - when: tsg_access_type == 2 - - - name: "Template sapp.service destination server" template: src: "{{ role_path }}/templates/sapp.service.j2" @@ -82,20 +69,6 @@ src: "{{ role_path }}/files/memory.conf" dest: /etc/systemd/system/sapp.service.d/ mode: 0644 - -- name: "copy fake promisc tools for tera mode - service file" - copy: - src: "{{ role_path }}/files/tera_fake_promisc_setup.conf" - dest: /etc/systemd/system/sapp.service.d/ - mode: 0644 - when: tsg_access_type == 2 - -- name: "copy fake promisc tools for tera mode - scripts" - copy: - src: "{{ role_path }}/files/tera_fake_promisc_setup.sh" - dest: /home/mesasoft/sapp_run/tera_fake_promisc_setup.sh - mode: 0755 - when: tsg_access_type == 2 - name: "enable sapp" systemd: diff --git a/roles/sapp/templates/gdev.conf.j2 b/roles/sapp/templates/gdev.conf.j2 deleted file mode 100644 index 0ce756a..0000000 --- a/roles/sapp/templates/gdev.conf.j2 +++ /dev/null @@ -1,11 +0,0 @@ -[Module] -{% if tsg_running_type == 2 %} -pcapdevice={{ nic_data_incoming.name }} -sendto_gdev_card={{ nic_data_incoming.name }} -sendto_gdev_ip={{ inline_device_config.keepalive_ip }} -{% else %} -pcapdevice={{ inline_device_config.data_incoming }} -sendto_gdev_card={{ inline_device_config.data_incoming }} -sendto_gdev_ip={{ inline_device_config.keepalive_ip }} -{% endif %} -gdev_status_switch=1 diff --git a/roles/sapp/templates/sapp.service.j2 b/roles/sapp/templates/sapp.service.j2 index fc91415..f463dc4 100644 --- a/roles/sapp/templates/sapp.service.j2 +++ b/roles/sapp/templates/sapp.service.j2 @@ -1,6 +1,6 @@ [Unit] Description=sapp service -{% if tsg_running_type != 0 %} +{% if proxy_topo_type != 0 %} Requires=mrzcpd.service After=mrzcpd.service {% endif %} diff --git a/roles/sapp/templates/sapp.toml.j2 b/roles/sapp/templates/sapp.toml.j2 index 2fc5896..3bb7e31 100644 --- a/roles/sapp/templates/sapp.toml.j2 +++ b/roles/sapp/templates/sapp.toml.j2 @@ -9,14 +9,14 @@ instance_name = "sapp4" [CPU] -{% if tsg_access_type == 0 %} +{% if capture_packet_type == 0 %} worker_threads=1 {% else %} worker_threads={{ sapp.worker_threads }} {% endif %} send_only_threads_max={{ sapp.send_only_threads_max }} ### note, bind_mask, if you do not want to bind thread to special CPU core, keep it empty as [] -{% if tsg_access_type == 0 %} +{% if capture_packet_type == 0 %} bind_mask=[] {% else %} bind_mask=[{{ sapp.bind_mask }}] @@ -42,13 +42,6 @@ dictator_enable=0 [packet_io.feature] - {% if tsg_access_type == 4 %} - ### note, used to represent inbound or outbound direction value, - ### because it comes from Third party device, so it needs to be specified manually, - ### if inbound_route_dir=1, then outbound_route_dir=0, vice versa, - ### in other words, outbound_route_dir = 1 ^ inbound_route_dir; - inbound_route_dir={{ sapp.inbound_route_dir }} - {% endif %} ### note, BSD_packet_filter, if you do not want to set any filter rule, keep it empty as "" BSD_packet_filter="" @@ -76,7 +69,9 @@ dictator_enable=0 ### note, depolyment.mode options: [mirror, inline, transparent] [packet_io.depolyment] - {% if tsg_access_type == 0 %} + {% if traffic_attr_type == 0 %} + mode=mirror + {% elif traffic_addr_type == 1 and network_topo_type == 1 and capture_packet_type == 0 %} mode=transparent {% else %} mode=inline @@ -84,7 +79,7 @@ dictator_enable=0 ### note, interface.type options: [pag,pcap,marsio] [packet_io.internal.interface] - {% if tsg_access_type == 0 %} + {% if capture_packet_type == 0 %} type=pcap name={{packet_io.internal_interface}} {% else %} @@ -93,7 +88,7 @@ dictator_enable=0 {% endif %} [packet_io.external.interface] - {% if tsg_access_type == 0 %} + {% if capture_packet_type == 0 %} type=pcap name={{packet_io.external_interface}} {% else %}