#cloud-config
# vim: ft=yaml

bootcmd:
  - sleep 10
  - cat /etc/resolv.conf
  - uname -r
  - timedatectl set-ntp 1
  - timedatectl set-timezone Europe/Bratislava
  - dnf config-manager --set-enabled updates updates-testing
  - sed -i "s/ext4 * defaults *1 1/ext4 noatime 0 0/" /etc/fstab
  - sleep 10
  - touch /.plsgo

write_files:
  - content: |
      [main]
      gpg_check=1
      installonly_limit=2
      clean_requirements_on_remove=True
      fastestmirror=True
      max_parallel_downloads=7
    path: /etc/dnf/dnf.conf
    owner: root:root
    permissions: '0644'
  - content: |
      net.ipv4.ip_forward = 1
    path: /etc/sysctl.conf
    owner: root:root
    permissions: '0644'
    append: true

ssh_pwauth: true
chpasswd:
  list: |
     root:1234
  expire: false

users:
  - name: root
    ssh_authorized_keys:
      - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBtG6NCgdLHX4ztpfvYNRaslKWZcl6KdTc1DehVH4kAL
  - name: ansible
    ssh_authorized_keys:
      - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBtG6NCgdLHX4ztpfvYNRaslKWZcl6KdTc1DehVH4kAL
       # the tf-ansible key
      - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ9JEzfMs+O6I5JYRQ+gHWClvCqaNTdop8ncDeSj+RWs
    sudo: ['ALL=(ALL) NOPASSWD:ALL']
    shell: /bin/bash
    groups: wheel

ssh_publish_hostkeys:
  enabled: false
ssh:
  emit_keys_to_console: false

# hostname is set based on main.tf variables
preserve_hostname: false
fqdn: ${hostname}.${domainname}
hostname: ${hostname}


# reboot after fqdn is set to update the info in libvirt's dnsmasq
power_state:
  delay: "+1"
  mode: reboot
  condition: true
  timeout: 300

packages:
  - vim
  - frr
  - htop
  # use python3 instead of python39 or similar; python3 is certain to point to
  # the latest python version available in the repositories (apart from
  # python3-devel perhaps)
  - python3  # for ansible
  - sudo

package_upgrade: true
package_reboot_if_required: true


network:
  version: 2
  ethernets:
    eth2_r_eedge:
      match:
        macaddress: '00:07:00:13:37:24'
      dhcp4: false
      addresses:
        - 10.16.7.1/24
      gateway4: 10.16.6.1
      nameservers:
        addresses: [8.8.8.8]
      routes:
        - to: 10.16.5.0/24
          via: 10.16.6.1
          metric: 3

    eth2_r_upstream:
      match:
        macaddress: '00:07:00:13:37:25'
      dhcp4: false
      addresses:
        - 10.16.6.2/24
      gateway4: 10.16.6.1
      nameservers:
        addresses: [8.8.8.8]
      routes:
        - to: 10.16.5.0/24
          via: 10.16.7.1
          metric: 3