forked from Deuxfleurs/infrastructure
Add my own modifications
This commit is contained in:
parent
eac2581a20
commit
03d4e50b05
4 changed files with 9 additions and 17 deletions
|
@ -1,4 +1,4 @@
|
||||||
[cluster_nodes]
|
[cluster_nodes]
|
||||||
veterini ansible_host=fbx-rennes2.machine.deuxfleurs.fr ansible_port=110 ansible_user=root public_ip=192.168.1.2 private_ip=192.168.1.2 interface=eno1 dns_server=208.67.222.222
|
veterini ansible_host=fbx-rennes2.machine.deuxfleurs.fr ansible_port=110 ansible_user=root public_ip=192.168.1.2 private_ip=192.168.1.2 interface=eno1 dns_server=80.67.169.40
|
||||||
silicareux ansible_host=fbx-rennes2.machine.deuxfleurs.fr ansible_port=111 ansible_user=root public_ip=192.168.1.3 private_ip=192.168.1.3 interface=eno1 dns_server=208.67.222.222
|
silicareux ansible_host=fbx-rennes2.machine.deuxfleurs.fr ansible_port=111 ansible_user=root public_ip=192.168.1.3 private_ip=192.168.1.3 interface=eno1 dns_server=80.67.169.40
|
||||||
wonse ansible_host=fbx-rennes2.machine.deuxfleurs.fr ansible_port=112 ansible_user=root public_ip=192.168.1.4 private_ip=192.168.1.4 interface=eno1 dns_server=208.67.222.222
|
wonse ansible_host=fbx-rennes2.machine.deuxfleurs.fr ansible_port=112 ansible_user=root public_ip=192.168.1.4 private_ip=192.168.1.4 interface=eno1 dns_server=80.67.169.40
|
||||||
|
|
|
@ -12,6 +12,12 @@
|
||||||
autoclean: yes
|
autoclean: yes
|
||||||
autoremove: yes
|
autoremove: yes
|
||||||
|
|
||||||
|
- name: "Remove base tools"
|
||||||
|
apt:
|
||||||
|
name:
|
||||||
|
- systemd-resolved
|
||||||
|
state: absent
|
||||||
|
|
||||||
- name: "Install base tools"
|
- name: "Install base tools"
|
||||||
apt:
|
apt:
|
||||||
name:
|
name:
|
||||||
|
|
|
@ -1,6 +0,0 @@
|
||||||
---
|
|
||||||
- name: reload iptables
|
|
||||||
shell: iptables-restore < /etc/iptables/rules.v4 && systemctl restart docker
|
|
||||||
|
|
||||||
- name: reload ip6tables
|
|
||||||
shell: ip6tables-restore < /etc/iptables/rules.v6
|
|
|
@ -1,12 +1,8 @@
|
||||||
- name: "Deploy iptablesv4 configuration"
|
- name: "Deploy iptablesv4 configuration"
|
||||||
template: src=rules.v4.j2 dest=/etc/iptables/rules.v4
|
template: src=rules.v4.j2 dest=/etc/iptables/rules.v4
|
||||||
notify:
|
|
||||||
- reload iptables
|
|
||||||
|
|
||||||
- name: "Deploy iptablesv6 configuration"
|
- name: "Deploy iptablesv6 configuration"
|
||||||
copy: src=rules.v6 dest=/etc/iptables/rules.v6
|
copy: src=rules.v6 dest=/etc/iptables/rules.v6
|
||||||
notify:
|
|
||||||
- reload ip6tables
|
|
||||||
|
|
||||||
- name: "Activate IP forwarding"
|
- name: "Activate IP forwarding"
|
||||||
sysctl:
|
sysctl:
|
||||||
|
@ -14,10 +10,6 @@
|
||||||
value: 1
|
value: 1
|
||||||
sysctl_set: yes
|
sysctl_set: yes
|
||||||
|
|
||||||
- name: "Flush handlers"
|
|
||||||
meta: flush_handlers
|
|
||||||
|
|
||||||
|
|
||||||
# These two lines are used to undo previous config, remove them once it is done
|
# These two lines are used to undo previous config, remove them once it is done
|
||||||
- name: "Update nsswitch.conf to not use systemd-resolved"
|
- name: "Update nsswitch.conf to not use systemd-resolved"
|
||||||
copy: src=nsswitch.conf dest=/etc/nsswitch.conf
|
copy: src=nsswitch.conf dest=/etc/nsswitch.conf
|
||||||
|
|
Loading…
Reference in a new issue