switch to duconet-wg service mesh

2024-06-24 09:30:38 -04:00
parent 44e484f22e
commit b7f93fe41d
22 changed files with 476 additions and 141 deletions
--- a/dns/README.md
+++ b/dns/README.md
@@ -0,0 +1,90 @@
+# Network Management
+
+- [Network Management](#network-management)
+  - [DNS Caching](#dns-caching)
+  - [Route53](#route53)
+  - [Reeselink Addresses](#reeselink-addresses)
+  - [Reeseapps Addresses](#reeseapps-addresses)
+  - [Duconet WG Addresses](#duconet-wg-addresses)
+
+## DNS Caching
+
+Use unifi to cache important DNS records. The following are critical:
+
+- `driveripper-wg.reeselink.com` `Host (AAAA)` `fd00:fd41:d0f1:1010::6`
+- `democratic-csi-server.reeselink.com` `Host (A)` `fd00:fd41:d0f1:1010::6`
+- `driveripper.reeseapps.com` `Host (A)` `10.1.200.253`
+- `driveripper.reeseapps.com` `Host (A)` `10.1.203.197`
+- `driveripper.reeseapps.com` `Host (AAAA)` `2600:1700:1e6c:a81f:153e:9c35:8ff3:fa3`
+- `driveripper.reeseapps.com` `Host (AAAA)` `2600:1700:1e6c:a81f:793d:7abf:e94d:9bc4`
+
+## Route53
+
+```bash
+aws route53 list-hosted-zones
+
+# reeselink
+aws route53 change-resource-record-sets --hosted-zone-id Z0092652G7L97DSINN18 --change-batch file://
+
+# reeseapps
+aws route53 change-resource-record-sets --hosted-zone-id Z012820733346FJ0U4FUF --change-batch file://
+```
+
+## Reeselink Addresses
+
+These are convenience dns records so you don't have to remember every ip address. IPV6 and IPV4.
+
+```bash
+aws route53 change-resource-record-sets --hosted-zone-id Z0092652G7L97DSINN18 --change-batch file://dns/reeselink.json
+```
+
+You can extract these addresses into a text file with:
+
+```bash
+# IPV6
+cat dns/reeselink.json | \
+    jq -c -r '[ .Changes.[] |
+        select( .ResourceRecordSet.Type | . == "AAAA") ]
+        | .[]
+        | .ResourceRecordSet
+        | .Name,.ResourceRecords.[].Value' > dns/ipv6.txt
+
+# IPV4
+cat dns/reeselink.json | \
+    jq -c -r '[ .Changes.[] | 
+        select( .ResourceRecordSet.Type | . == "A") ] 
+        | .[]
+        | .ResourceRecordSet
+        | .Name,.ResourceRecords.[].Value' > dns/ipv4.txt
+```
+
+## Reeseapps Addresses
+
+```bash
+aws route53 change-resource-record-sets --hosted-zone-id Z012820733346FJ0U4FUF --change-batch file://dns/reeseapps.json
+```
+
+## Duconet WG Addresses
+
+After generating new addresses from wireguard's vars.yaml. Use find and replace regex
+with the following:
+
+```regex
+(.*.reeselink.com)\n(.*)$
+```
+
+```regex
+        {
+            "Action": "UPSERT",
+            "ResourceRecordSet": {
+                "Name": "$1",
+                "Type": "AAAA",
+                "TTL": 300,
+                "ResourceRecords": [
+                    {
+                        "Value": "$2"
+                    }
+                ]
+            }
+        },
+```