Go to file

A. F. Dudley 0b52fc99d7 fix: ashburn relay playbooks and document DZ tunnel ACL root cause Playbook fixes from testing: - ashburn-relay-biscayne: insert DNAT rules at position 1 before Docker's ADDRTYPE LOCAL rule (was being swallowed at position 3+) - ashburn-relay-mia-sw01: add inbound route for 137.239.194.65 via egress-vrf vrf1 (nexthop only, no interface — EOS silently drops cross-VRF routes that specify a tunnel interface) - ashburn-relay-was-sw01: replace PBR with static route, remove Loopback101 Bug doc (bug-ashburn-tunnel-port-filtering.md): root cause is the DoubleZero agent on mia-sw01 overwrites SEC-USER-500-IN ACL, dropping outbound gossip with src 137.239.194.65. The DZ agent controls Tunnel500's lifecycle. Fix requires a separate GRE tunnel using mia-sw01's free LAN IP (209.42.167.137) to bypass DZ infrastructure. Also adds all repo docs, scripts, inventory, and remaining playbooks. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>		2026-03-07 01:44:25 +00:00
docs	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
inventory	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
playbooks	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
scripts	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
.gitignore	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
CLAUDE.md	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
README.md	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00
ansible.cfg	fix: ashburn relay playbooks and document DZ tunnel ACL root cause	2026-03-07 01:44:25 +00:00

README.md

biscayne-agave-runbook

Ansible playbooks for operating the kind-based agave-stack deployment on biscayne.vaasl.io.