X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;ds=sidebyside;f=modules%2Froles%2Fmanifests%2Fbgp.pp;h=da7fcb5f37f7215950cd2449c62e676a5eaac839;hb=6632ba2a54e021d9e09089197f392d5e6e279d02;hp=d3fbb390b5893007f697a27ec1fcdb1ed0ff1e5f;hpb=d551cf8d994dbfe75b4406e512796544881ac714;p=mirror%2Fdsa-puppet.git

diff --git a/modules/roles/manifests/bgp.pp b/modules/roles/manifests/bgp.pp
index d3fbb390b..da7fcb5f3 100644
--- a/modules/roles/manifests/bgp.pp
+++ b/modules/roles/manifests/bgp.pp
@@ -1,7 +1,8 @@
 class roles::bgp {
 	$bgp_peers = $::hostname ? {
-		bilbao    => '2001:41c9:2:13c::/128 89.16.162.0/32',
-		default    => undef,
+		mirror-accumu => '2001:6b0:1e:2::1c6/128 130.242.6.198/32',
+		mirror-skroutz => '2a03:e40:42:200::151:1/128 2a03:e40:42:200::151:2/128 154.57.0.249/32 154.57.0.250',
+		default       => undef,
 	}
 
 	if ! $bgp_peers {
@@ -11,6 +12,11 @@ class roles::bgp {
 	@ferm::rule { 'dsa-bgp':
 		description => 'Allow BGP from peers',
 		domain      => '(ip ip6)',
-		rule        => '&SERVICE_RANGE(tcp, ssh, $bgp_peers)'
+		rule        => "&SERVICE_RANGE(tcp, bgp, ($bgp_peers))"
 	}
+
+	file { '/etc/network/interfaces.d/anycasted':
+		content => template('roles/anycast/interfaces.erb')
+	}
+
 }