add refresh-localnet.yaml

ansible/refresh-localnet.yaml

+---
+- hosts: wg
+  tasks:
+    - name: load vars
+      include_vars:
+        file: '../result/{{item}}.yaml'
+      with_items:
+        - global-vars
+        - vars-{{inventory_hostname_short}}
+    - name: post scripts
+      template:
+        src: scripts/{{item}}.sh.j2
+        dest: '{{ansible_user_dir}}/nextgen-network/scripts/{{item}}.sh'
+        mode: a+x
+      with_items:
+        - postup
+        - predown
+        - global-postup
+        - utility
+        - switch-rules-up
+        - switch-rules-down
+        - ocserv-postup
+        - ocserv-predown
+      notify: reload_switch_rules
+    - name: ipset files
+      template:
+        src: scripts/ipset.j2
+        dest: '{{ansible_user_dir}}/nextgen-network/ipsets/{{item}}.ipset'
+      with_items: '{{routeListNames}}'
+      notify: reload_chnroute
+    - name: mycard ipset create
+      become: true
+      shell: 'ipset create mycard hash:net maxelem 1000000 || true'
+      changed_when: false
+    - name: mycard ipset
+      become: true
+      shell: 'ipset add mycard {{item}} || true'
+      with_items: '{{routeLists.mycard}}'
+      changed_when: false
+    - name: localnet ipset
+      become: true
+      shell: 'ipset add localnet {{item}} || true'
+      with_items: '{{routeLists.mycard}}'
+      changed_when: false
+    - name: table pref 81 lookup main
+      become: true
+      shell: 'ip -4 rule add pref 81 to {{item}} lookup main || true'
+      with_items: '{{routeLists.mycard}}'
+      changed_when: false
+  handlers:
+    - name: reload_switch_rules
+      become: true
+      shell: '{{ansible_user_dir}}/nextgen-network/scripts/switch-rules-down.sh ; {{ansible_user_dir}}/nextgen-network/scripts/switch-rules-up.sh'
+    - name: reload_chnroute
+      become: true
+      shell: |
+        ipset flush chnrouter
+        sed '/^create chnrouter hash:net family inet$/d' {{ansible_user_dir}}/nextgen-network/ipsets/chnrouter.ipset | ipset restore