mirror of
https://github.com/ben-grande/qusal.git
synced 2025-09-19 12:04:45 -04:00
refactor: initial commit
This commit is contained in:
Ben Grande
commit
5eebd789ed
591 changed files with 18598 additions and 0 deletions
101
salt/sys-firewall/create.sls
Normal file
101
salt/sys-firewall/create.sls
Normal file
|
|
@ -0,0 +1,101 @@
|
|||
{#
|
||||
SPDX-FileCopyrightText: 2023 Benjamin Grande M. S. <ben.grande.b@gmail.com>
|
||||
|
||||
SPDX-License-Identifier: AGPL-3.0-or-later
|
||||
#}
|
||||
|
||||
{%- from "qvm/template.jinja" import load -%}
|
||||
|
||||
# Use the netvm of the default_netvm.
|
||||
{% set default_netvm = salt['cmd.shell']('qubes-prefs default_netvm') -%}
|
||||
{% set netvm = salt['cmd.shell']('qvm-prefs ' + default_netvm + ' netvm') -%}
|
||||
# If netvm is empty, user's default_netvm is the uplink (sys-net).
|
||||
{% if netvm == '' %}
|
||||
{% set netvm = default_netvm %}
|
||||
{% endif -%}
|
||||
|
||||
include:
|
||||
- .clone
|
||||
|
||||
{% load_yaml as defaults -%}
|
||||
name: {{ slsdotpath }}
|
||||
force: True
|
||||
require:
|
||||
- sls: {{ slsdotpath }}.clone
|
||||
present:
|
||||
- template: tpl-{{ slsdotpath }}
|
||||
- label: orange
|
||||
prefs:
|
||||
- template: tpl-{{ slsdotpath }}
|
||||
- label: orange
|
||||
- memory: 300
|
||||
- maxmem: 400
|
||||
- netvm: {{ netvm }}
|
||||
- vcpus: 1
|
||||
- provides-network: True
|
||||
- include_in_backups: False
|
||||
features:
|
||||
- enable:
|
||||
- servicevm
|
||||
- service.qubes-firewall
|
||||
- disable:
|
||||
- service.cups
|
||||
- service.cups-browsed
|
||||
{%- endload %}
|
||||
{{ load(defaults) }}
|
||||
|
||||
{% load_yaml as defaults -%}
|
||||
name: dvm-{{ slsdotpath }}
|
||||
force: True
|
||||
require:
|
||||
- sls: {{ slsdotpath }}.clone
|
||||
present:
|
||||
- template: tpl-{{ slsdotpath }}
|
||||
- label: orange
|
||||
prefs:
|
||||
- template: tpl-{{ slsdotpath }}
|
||||
- label: orange
|
||||
- netvm: {{ netvm }}
|
||||
- memory: 300
|
||||
- maxmem: 400
|
||||
- vcpus: 1
|
||||
- template_for_dispvms: True
|
||||
- include_in_backups: False
|
||||
features:
|
||||
- enable:
|
||||
- servicevm
|
||||
- disable:
|
||||
- appmenus-dispvm
|
||||
- service.cups
|
||||
- service.cups-browsed
|
||||
{%- endload %}
|
||||
{{ load(defaults) }}
|
||||
|
||||
{% load_yaml as defaults -%}
|
||||
name: disp-{{ slsdotpath }}
|
||||
force: True
|
||||
require:
|
||||
- qvm: dvm-{{ slsdotpath }}
|
||||
present:
|
||||
- template: dvm-{{ slsdotpath }}
|
||||
- label: orange
|
||||
- class: DispVM
|
||||
prefs:
|
||||
- template: dvm-{{ slsdotpath }}
|
||||
- label: orange
|
||||
- netvm: {{ netvm }}
|
||||
- memory: 300
|
||||
- maxmem: 400
|
||||
- vcpus: 1
|
||||
- provides-network: True
|
||||
- autostart: False
|
||||
- include_in_backups: False
|
||||
features:
|
||||
- enable:
|
||||
- servicevm
|
||||
- service.qubes-firewall
|
||||
- disable:
|
||||
- service.cups
|
||||
- service.cups-browsed
|
||||
{%- endload %}
|
||||
{{ load(defaults) }}
|
||||
Loading…
Add table
Add a link
Reference in a new issue