How does Ansible handle IP address duplication?

Gary Barber

unread,

May 6, 2020, 7:42:24 AM5/6/20

to Ansible Project

In my network I manage multiple customers on seperate networks. Many of which are owned by the customer.

I want to use Ansible to manage servers in these networks from a single managament network that has connectivity to all customer networks.

The problem is that some customer, due to owning and running their own networks, have overlapping IP ranges, so more than one server will have the same end IP address.

How does Ansible work in this situation?

If I open firewalls directly from my single Ansible server, how does Ansible handle situations where servers on different customer networks have the same IP address?

Can Ansible work with Proxy servers? Can I setup an Ansible proxy in each customer network to pass through ssh and WinRM traffic? the procy servers would still be managed by the single central Ansible server, so that still leaves the question of how does Ansible handle the duplicate IP's?

Dick Visser

unread,

May 6, 2020, 9:32:21 AM5/6/20

to ansible...@googlegroups.com

Look at the jump host example

https://docs.ansible.com/ansible/latest/reference_appendices/faq.html

--
You received this message because you are subscribed to the Google Groups "Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/947e72d0-f77e-4be1-a4b8-74eadbf82d20%40googlegroups.com.

--

Sent from a mobile device - please excuse the brevity, spelling and punctuation.

Boris Mühmer

unread,

May 8, 2020, 2:08:11 AM5/8/20

to ansible...@googlegroups.com

That's just the common "ssh jumphost" pattern.

I haven't tried it, yet... but it looks like I have soon. After a quick search I found this information:

https://docs.ansible.com/ansible/latest/reference_appendices/faq.html#how-do-i-configure-a-jump-host-to-access-servers-that-i-have-no-direct-access-to

As I said, I only had a brief look at this article, and didn't test it, yet. But I use ssh jumphosts in many bash scripts.

Regards,

Boris

--

Dick Visser

unread,

May 8, 2020, 5:58:52 AM5/8/20

to ansible...@googlegroups.com

Yup, since ansible uses SSH, you can use whatever SSH uses to overcome
these issues, in this case jumphosts.
This is tried and true so should work well.

> To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CALW2tjpeqEjAGxeF%2BBDgsvKg6iqDW0t6HOo13syS0Jemcem6Ng%40mail.gmail.com.

--
Dick Visser
Trust & Identity Service Operations Manager
GÉANT

Reply all

Reply to author

Forward