Merge pull request '8025-awxRefactor' (!26) from 8025-awxRefactor into main
Reviewed-on: #26 Reviewed-by: Javier Lopez <jlopez@verdnatura.es>
This commit is contained in:
commit
cddc0b4444
|
@ -0,0 +1,35 @@
|
||||||
|
# Verdnatura Ansible playbooks
|
||||||
|
|
||||||
|
Collection of Ansible playbooks used in the Verdnatura server farm.
|
||||||
|
|
||||||
|
## Install Ansible
|
||||||
|
|
||||||
|
Instal Ansible on Debian.
|
||||||
|
```
|
||||||
|
apt install ansible
|
||||||
|
```
|
||||||
|
|
||||||
|
## Run playbook
|
||||||
|
|
||||||
|
Before merging changes into protected branches, playbooks should be tested
|
||||||
|
locally to ensure they work properly.
|
||||||
|
|
||||||
|
Launch playbook on the fly on a host not declared in the inventory.
|
||||||
|
```
|
||||||
|
ansible-playbook playbooks/test.yml -u root -i <ip_or_hostname>,
|
||||||
|
```
|
||||||
|
|
||||||
|
*Note the comma at the end of the hostname or IP.*
|
||||||
|
|
||||||
|
## Common playbooks
|
||||||
|
|
||||||
|
* **facts.yml**: Collect and display facts from a host.
|
||||||
|
* **ping.yml**: Checking that a host is alive and reachable by Ansible.
|
||||||
|
* **test.yml**: Test an specific role. Don't forget to undo changes before pushing!
|
||||||
|
* **debian.yml**: Setup base Debian server
|
||||||
|
|
||||||
|
## Documentation
|
||||||
|
|
||||||
|
* https://docs.ansible.com/ansible/latest/reference_appendices/config.html
|
||||||
|
* https://docs.ansible.com/ansible/latest/collections/ansible/builtin/gather_facts_module.html
|
||||||
|
* https://docs.ansible.com/ansible/latest/playbook_guide/playbooks_vars_facts.html
|
|
@ -0,0 +1,10 @@
|
||||||
|
[defaults]
|
||||||
|
roles_path = ./roles
|
||||||
|
inventory = ./inventories/production
|
||||||
|
gathering = smart
|
||||||
|
interpreter_python = auto_silent
|
||||||
|
remote_user = awx-user
|
||||||
|
host_key_checking = False
|
||||||
|
|
||||||
|
[privilege_escalation]
|
||||||
|
become = True
|
|
@ -1,31 +1,34 @@
|
||||||
# Collections
|
## Collections
|
||||||
|
|
||||||
The porpouse of collections is get more modules and plugins to use in ansible.
|
The purpose of collections is get more modules and plugins to use in ansible.
|
||||||
|
|
||||||
Collections are supported by Ansible community.
|
Collections are supported by Ansible community.
|
||||||
|
|
||||||
# Install collections
|
# Install collections
|
||||||
|
|
||||||
In AWX-operator container , execute:
|
In *awx-operator* container, execute:
|
||||||
```
|
```
|
||||||
ansible-galaxy collection install -r requirements.yml
|
ansible-galaxy collection install -r requirements.yml
|
||||||
```
|
```
|
||||||
|
|
||||||
Where `requirements.yml` we need to specify the list of collections that we want to install:
|
Where `requirements.yml` we need to specify the list of collections that we
|
||||||
|
want to install:
|
||||||
```
|
```
|
||||||
collections:
|
collections:
|
||||||
- name: community.general
|
- name: community.general
|
||||||
|
|
||||||
```
|
```
|
||||||
|
|
||||||
# Collection index:
|
# Collection index
|
||||||
[Index-Ansible-collections](https://docs.ansible.com/ansible/latest/collections/index.html)
|
|
||||||
|
* https://docs.ansible.com/ansible/latest/collections/index.html
|
||||||
|
|
||||||
# List collections
|
# List collections
|
||||||
[Listing-collections](https://docs.ansible.com/ansible/latest/collections_guide/collections_listing.html)
|
|
||||||
|
|
||||||
To list installed collections, run `ansible-galaxy collection list` (inside awx operator container)
|
To list installed collections, run `ansible-galaxy collection list` (inside awx
|
||||||
|
operator container)
|
||||||
# Install multiple collections with a requirements file
|
|
||||||
[Install-multiple](https://docs.ansible.com/ansible/devel/collections_guide/collections_installing.html#install-multiple-collections-with-a-requirements-file)
|
* https://docs.ansible.com/ansible/latest/collections_guide/collections_listing.html
|
||||||
|
|
||||||
|
# Install multiple collections
|
||||||
|
|
||||||
|
* https://docs.ansible.com/ansible/devel/collections_guide/collections_installing.html#install-multiple-collections-with-a-requirements-file
|
||||||
|
|
|
@ -1,4 +1,3 @@
|
||||||
---
|
|
||||||
collections:
|
collections:
|
||||||
- name: community.general
|
- name: community.general
|
||||||
version: '>=9.0.0'
|
version: '>=9.0.0'
|
||||||
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'cephtest01'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: cephtest01.lab.verdnatura.es cephtest01
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'cephtest02'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: cephtest02.lab.verdnatura.es cephtest02
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'cephtest03'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: cephtest03.lab.verdnatura.es cephtest03
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,11 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
|
@ -1,11 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
|
@ -1,43 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
# ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# EXAMPLE
|
|
||||||
# bantime: "604800"
|
|
||||||
# maxretry: "4"
|
|
||||||
# findtime: "604800"
|
|
||||||
# jails:
|
|
||||||
#- name: NAME-FILTER(list -> /etc/fail2ban/filter.d/somefilenamefilter) - (first JAIL SSH)
|
|
||||||
# enabled: true
|
|
||||||
# filter: somefilenamefilter
|
|
||||||
# logpath: /var/log/logofserviceauths
|
|
||||||
# port: ['nameofservice', 'PORTNUMBEROFSERVICE']
|
|
||||||
# maxretry: 4 # max retry to auth
|
|
||||||
# bantime: 604800 # 1week bantime in seconds
|
|
||||||
# findtime: 604800 # 1week time finding source-host auth
|
|
||||||
# action: "%(action_mwl)s"
|
|
||||||
#- name: NAME-FILTER(list -> /etc/fail2ban/filter.d/somefilenamefilter) - (second JAIL otherService)
|
|
||||||
# enabled: true
|
|
||||||
# filter: somefilenamefilter
|
|
||||||
# logpath: /var/log/logofserviceauths
|
|
||||||
# port: ['nameofservice', 'PORTNUMBEROFSERVICE']
|
|
||||||
# maxretry: 4 # max retry to auth
|
|
||||||
# bantime: 604800 # 1week bantime in seconds
|
|
||||||
# findtime: 604800 # 1week time finding source-host auth
|
|
||||||
# banaction: NAME-ACTION(list -> /etc/fail2ban/action.d/somefilenameaction)
|
|
||||||
# action: "%(action_mwl)s"
|
|
||||||
# ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# 31536000 ; year
|
|
||||||
# 18144000 ; 30days
|
|
||||||
# 604800 ; 1 week
|
|
||||||
# 86400 ; 1 day
|
|
||||||
# 3600 ; 1 hour
|
|
||||||
# ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'vn-debian-test'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: vn-debian-test.lab.verdnatura.es vn-debian-test
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,11 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'ejemplo'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
#autofs_homes_enabled: True
|
|
||||||
autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'freeradius-playbook'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: freeradius-playbook.lab.verdnatura.es freeradius-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'freeradiustotp'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: freeradiustotp.servers.dc.verdnatura.es freeradiustotp
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: verdnatura.es
|
|
||||||
search_name: verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
fail2ban_enabled: True
|
|
||||||
#fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
#autofs_homes_enabled: True
|
|
||||||
autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,11 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
|
@ -1,11 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'iventoy-test'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: iventoy-test.lab.verdnatura.es iventoy-test
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'iventoy'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: iventoy.servers.dc.verdnatura.es iventoy
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: dc.verdnatura.es
|
|
||||||
search_name: dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,13 +0,0 @@
|
||||||
---
|
|
||||||
bantime: "10m"
|
|
||||||
maxretry: "10"
|
|
||||||
findtime: "10m"
|
|
||||||
jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
filter: sshd
|
|
||||||
logpath: /var/log/auth.log
|
|
||||||
port: ['ssh', '22']
|
|
||||||
maxretry: 10
|
|
||||||
bantime: 10m
|
|
||||||
findtime: 10m
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-master1'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-master2'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-master3'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-worker1'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-worker2'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-worker3'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'kube-worker4'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'kubelab-proxy1'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: kubelab-proxy1.lab.verdnatura.es kubelab-proxy1
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,12 +0,0 @@
|
||||||
---
|
|
||||||
fail2ban_times:
|
|
||||||
bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
|
@ -1,137 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'nagiosql-db'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: nagiosql-db.verdnatura.es nagiosql-db
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
# ES UN CT , NO ES NECESARIO
|
|
||||||
#secure-grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
# ES UN CT , NO ES NECESARIO
|
|
||||||
#hot-plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
fail2ban_enabled: True
|
|
||||||
#fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
# ES UN CT , NO ES NECESARIO
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
# NO ESTA TESTEADO
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'openvpn-freeradius'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: openvpn-freeradius.lab.verdnatura.es openvpn-freeradius
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'pbx'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: pbx pbx.verdnatura.es pbx.static.verdnatura.es pbx.servers.dc.verdnatura.es
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: verdnatura.es
|
|
||||||
search_name: verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root-user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'test-playbook'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay-host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized-auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure-grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim-options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot-plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo-vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios-nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server-type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
#autofs-homes_enabled: True
|
|
||||||
autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
zabbix_agent_enabled: True
|
|
||||||
#zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'time1'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 10.0.1.87
|
|
||||||
name: time1.verdnatura.es time1
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: verdnatura.es
|
|
||||||
search_name: verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
#root_user_enabled: True
|
|
||||||
root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
#hostname_enabled: True
|
|
||||||
hostname_enabled: False
|
|
||||||
hostname: 'time2'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
#hosts_enabled: True
|
|
||||||
hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: test-playbook.lab.dc.verdnatura.es test-playbook
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
#resolv_enabled: True
|
|
||||||
resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
#update_enabled: True
|
|
||||||
update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
#packages_enabled: True
|
|
||||||
packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
#relay_host_enabled: True
|
|
||||||
relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
#centralized_auth_enabled: True
|
|
||||||
centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
#sudoers_enabled: True
|
|
||||||
sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
#vim_options_enabled: True
|
|
||||||
vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
#motd_enabled: True
|
|
||||||
motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
#hot_plug_enabled: True
|
|
||||||
hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
#locales_enabled: True
|
|
||||||
locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
#tzdata_enabled: True
|
|
||||||
tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
#repo_vn_enabled: True
|
|
||||||
repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
#server_type_enabled: True
|
|
||||||
server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
#ntp_enabled: True
|
|
||||||
ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'vm-debian12'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: vm-debian12.lab.verdnatura.es vm-debian12
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.verdnatura.es
|
|
||||||
search_name: lab.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
#fail2ban_enabled: True
|
|
||||||
fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
nagios_nrpe_enabled: True
|
|
||||||
#nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'zabbix-frontend-web'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: zabbix-frontend-web.lab.dc.verdnatura.es zabbix-frontend-web
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
fail2ban_enabled: True
|
|
||||||
#fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
|
@ -1,133 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
### ROOT-USER ###############################################################
|
|
||||||
root_user_enabled: True
|
|
||||||
#root_user_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTNAME ################################################################
|
|
||||||
hostname_enabled: True
|
|
||||||
#hostname_enabled: False
|
|
||||||
hostname: 'zabbix-server-db'
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOSTS ###################################################################
|
|
||||||
hosts_enabled: True
|
|
||||||
#hosts_enabled: False
|
|
||||||
hosts:
|
|
||||||
- ip: 127.0.0.1
|
|
||||||
name: localhost
|
|
||||||
- ip: 127.0.1.1
|
|
||||||
name: zabbix-server-db.lab.dc.verdnatura.es zabbix-server-db
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RESOLV ##################################################################
|
|
||||||
resolv_enabled: True
|
|
||||||
#resolv_enabled: False
|
|
||||||
domain_name: lab.dc.verdnatura.es
|
|
||||||
search_name: lab.dc.verdnatura.es
|
|
||||||
resolvs:
|
|
||||||
- ip: 10.0.0.4
|
|
||||||
- ip: 10.0.0.5
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### UPDATE ##################################################################
|
|
||||||
update_enabled: True
|
|
||||||
#update_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### INSTALL PACKAGES ########################################################
|
|
||||||
packages_enabled: True
|
|
||||||
#packages_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### RELAY HOST SMTP #########################################################
|
|
||||||
relay_host_enabled: True
|
|
||||||
#relay_host_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### CENTRALIZED AUTH ########################################################
|
|
||||||
centralized_auth_enabled: True
|
|
||||||
#centralized_auth_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SUDOERS #################################################################
|
|
||||||
sudoers_enabled: True
|
|
||||||
#sudoers_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SECURE GRUB #############################################################
|
|
||||||
#secure_grub_enabled: True
|
|
||||||
secure_grub_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### VIM OPTIONS #############################################################
|
|
||||||
vim_options_enabled: True
|
|
||||||
#vim_options_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### MOTD ####################################################################
|
|
||||||
motd_enabled: True
|
|
||||||
#motd_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### HOT PLUG ################################################################
|
|
||||||
hot_plug_enabled: True
|
|
||||||
#hot_plug_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### LOCALES #################################################################
|
|
||||||
locales_enabled: True
|
|
||||||
#locales_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### TZDATA ##################################################################
|
|
||||||
tzdata_enabled: True
|
|
||||||
#tzdata_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### REPO VN #################################################################
|
|
||||||
repo_vn_enabled: True
|
|
||||||
#repo_vn_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### FAIL2BAN ################################################################
|
|
||||||
fail2ban_enabled: True
|
|
||||||
#fail2ban_enabled: False
|
|
||||||
fail2ban_times:
|
|
||||||
- bantime: "604800"
|
|
||||||
maxretry: "4"
|
|
||||||
findtime: "604800"
|
|
||||||
fail2ban_jails:
|
|
||||||
- name: sshd
|
|
||||||
enabled: true
|
|
||||||
port: ['22']
|
|
||||||
filter: sshd
|
|
||||||
logpath: "%(sshd_log)s"
|
|
||||||
backend: "%(sshd_backend)s"
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NAGIOS NRPE #############################################################
|
|
||||||
#nagios_nrpe_enabled: True
|
|
||||||
nagios_nrpe_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### SERVER TYPE #############################################################
|
|
||||||
server_type_enabled: True
|
|
||||||
#server_type_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### NTP #####################################################################
|
|
||||||
ntp_enabled: True
|
|
||||||
#ntp_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### AUTOFS HOMES ############################################################
|
|
||||||
autofs_homes_enabled: True
|
|
||||||
#autofs_homes_enabled: False
|
|
||||||
#############################################################################
|
|
||||||
|
|
||||||
### ZABBIX AGENT ############################################################
|
|
||||||
#zabbix_agent_enabled: True
|
|
||||||
zabbix_agent_enabled: False
|
|
||||||
#############################################################################
|
|
71
hosts2
71
hosts2
|
@ -1,71 +0,0 @@
|
||||||
[pcscomerciales]
|
|
||||||
|
|
||||||
pc120 ansible_host=pc120.algemesi.verdnatura.es
|
|
||||||
pc213 ansible_host=pc213.algemesi.verdnatura.es
|
|
||||||
pc227 ansible_host=pc227.algemesi.verdnatura.es
|
|
||||||
pc235 ansible_host=pc235.algemesi.verdnatura.es
|
|
||||||
pc237 ansible_host=pc237.algemesi.verdnatura.es
|
|
||||||
pc243 ansible_host=pc243.algemesi.verdnatura.es
|
|
||||||
pc278 ansible_host=pc278.algemesi.verdnatura.es
|
|
||||||
pc279 ansible_host=pc279.algemesi.verdnatura.es
|
|
||||||
pc281 ansible_host=pc281.algemesi.verdnatura.es
|
|
||||||
pc289 ansible_host=pc289.algemesi.verdnatura.es
|
|
||||||
pc290 ansible_host=pc290.algemesi.verdnatura.es
|
|
||||||
pc291 ansible_host=pc291.algemesi.verdnatura.es
|
|
||||||
pc300 ansible_host=pc300.algemesi.verdnatura.es
|
|
||||||
pc301 ansible_host=pc301.algemesi.verdnatura.es
|
|
||||||
pc302 ansible_host=pc302.algemesi.verdnatura.es
|
|
||||||
pc304 ansible_host=pc304.algemesi.verdnatura.es
|
|
||||||
pc305 ansible_host=pc305.algemesi.verdnatura.es
|
|
||||||
pc308 ansible_host=pc308.algemesi.verdnatura.es
|
|
||||||
pc311 ansible_host=pc311.algemesi.verdnatura.es
|
|
||||||
pc312 ansible_host=pc312.algemesi.verdnatura.es
|
|
||||||
pc313 ansible_host=pc313.algemesi.verdnatura.es
|
|
||||||
pc318 ansible_host=pc318.algemesi.verdnatura.es
|
|
||||||
pc328 ansible_host=pc328.algemesi.verdnatura.es
|
|
||||||
pc342 ansible_host=pc342.algemesi.verdnatura.es
|
|
||||||
pc344 ansible_host=pc344.algemesi.verdnatura.es
|
|
||||||
pc350 ansible_host=pc350.algemesi.verdnatura.es
|
|
||||||
pc356 ansible_host=pc356.algemesi.verdnatura.es
|
|
||||||
pc358 ansible_host=pc358.algemesi.verdnatura.es
|
|
||||||
pc367 ansible_host=pc367.algemesi.verdnatura.es
|
|
||||||
pc371 ansible_host=pc371.algemesi.verdnatura.es
|
|
||||||
pc372 ansible_host=pc372.algemesi.verdnatura.es
|
|
||||||
pc373 ansible_host=pc373.algemesi.verdnatura.es
|
|
||||||
pc377 ansible_host=pc377.algemesi.verdnatura.es
|
|
||||||
pc378 ansible_host=pc378.algemesi.verdnatura.es
|
|
||||||
pc381 ansible_host=pc381.algemesi.verdnatura.es
|
|
||||||
pc382 ansible_host=pc382.algemesi.verdnatura.es
|
|
||||||
pc383 ansible_host=pc383.algemesi.verdnatura.es
|
|
||||||
pc385 ansible_host=pc385.algemesi.verdnatura.es
|
|
||||||
pc386 ansible_host=pc386.algemesi.verdnatura.es
|
|
||||||
pc387 ansible_host=pc387.algemesi.verdnatura.es
|
|
||||||
pc388 ansible_host=pc388.algemesi.verdnatura.es
|
|
||||||
pc389 ansible_host=pc389.algemesi.verdnatura.es
|
|
||||||
pc390 ansible_host=pc390.algemesi.verdnatura.es
|
|
||||||
pc391 ansible_host=pc391.algemesi.verdnatura.es
|
|
||||||
pc392 ansible_host=pc392.algemesi.verdnatura.es
|
|
||||||
pc393 ansible_host=pc393.algemesi.verdnatura.es
|
|
||||||
pc396 ansible_host=pc396.algemesi.verdnatura.es
|
|
||||||
pc397 ansible_host=pc397.algemesi.verdnatura.es
|
|
||||||
pc409 ansible_host=pc409.algemesi.verdnatura.es
|
|
||||||
pc413 ansible_host=pc413.algemesi.verdnatura.es
|
|
||||||
pc415 ansible_host=pc415.algemesi.verdnatura.es
|
|
||||||
pc417 ansible_host=pc417.algemesi.verdnatura.es
|
|
||||||
pc426 ansible_host=pc426.algemesi.verdnatura.es
|
|
||||||
pc429 ansible_host=pc429.algemesi.verdnatura.es
|
|
||||||
pc431 ansible_host=pc431.algemesi.verdnatura.es
|
|
||||||
pc432 ansible_host=pc432.algemesi.verdnatura.es
|
|
||||||
pc440 ansible_host=pc440.algemesi.verdnatura.es
|
|
||||||
pc456 ansible_host=pc456.algemesi.verdnatura.es
|
|
||||||
pc457 ansible_host=pc457.algemesi.verdnatura.es
|
|
||||||
pc458 ansible_host=pc458.algemesi.verdnatura.es
|
|
||||||
pc459 ansible_host=pc459.algemesi.verdnatura.es
|
|
||||||
pc461 ansible_host=pc461.algemesi.verdnatura.es
|
|
||||||
pc463 ansible_host=pc463.algemesi.verdnatura.es
|
|
||||||
pc465 ansible_host=pc465.algemesi.verdnatura.es
|
|
||||||
pc466 ansible_host=pc466.algemesi.verdnatura.es
|
|
||||||
pc467 ansible_host=pc467.algemesi.verdnatura.es
|
|
||||||
pc468 ansible_host=pc468.algemesi.verdnatura.es
|
|
||||||
pc473 ansible_host=pc473.algemesi.verdnatura.es
|
|
||||||
pc476 ansible_host=pc476.algemesi.verdnatura.es
|
|
|
@ -0,0 +1,59 @@
|
||||||
|
sysadmin_mail: sysadmin@verdnatura.es
|
||||||
|
smtp_server: smtp.verdnatura.es
|
||||||
|
dc_net: "10.0.0.0/16"
|
||||||
|
resolv:
|
||||||
|
domain: verdnatura.es
|
||||||
|
search: verdnatura.es
|
||||||
|
resolvers:
|
||||||
|
- '10.0.0.4'
|
||||||
|
- '10.0.0.5'
|
||||||
|
awx_email: awx@verdnatura.es
|
||||||
|
awx_pub_key: >
|
||||||
|
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQDjeIZVyppFK/dqOUa1PxgSeRVWk7MFmANYvSs+VHHn
|
||||||
|
D4/BE//K8AxlxnyLl4e6jAcBFoIu1JLxbRKdOhx+Zgkq5OmEzp/XKzfEvnEU5CP+W2+5MwfkUQ3TetJs
|
||||||
|
OoHiP/qYWPqqqfDFqNM1xs9am5Frv9BVu5pFiSO9oS14xVAlUOwnONQnRtAbuBOmMldpzxmuFY+Rs3G2
|
||||||
|
MmokcOYrs5Z3TdCOG9bDGg8erzWklLW+aRYdXqMEZpwIZPcOFy6JXEyZ/9IpCLBN58IMr0RypFbgWb2V
|
||||||
|
o05iTI5j99Pzn//FgAhe6BXRyHSGOJ29hmKugt9sIY1N/H6aYqtTVR5EEIngY1XHtFywU1+qtYHMs8PB
|
||||||
|
9Hl87zUkla0+S5Zn8q92y7DQFsOZ9ND6syEzWhiCP1ic3Wo76TVbuNoTW/XvgZnemx1epuOqDj9S7iGT
|
||||||
|
SHMvvSop8z5hU2EQiVkgRPl4cM2fi0vF513ivq5IbCgg2VfXUOLM5E5y0TI7lzBriTtCuIk=
|
||||||
|
awx@awx.verdnatura.es
|
||||||
|
nslcd_password: !vault >
|
||||||
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
30343461633538323832316231383362626636653864353535346461353937313131336135396162
|
||||||
|
3866623238353638323961363239373236393339333134380a313561363030306165393965396234
|
||||||
|
65316535626434333331633438613639633163643765633064363833303461363834653864646464
|
||||||
|
3133313233353730620a343536316266393637623563313563613332646630643632366439343764
|
||||||
|
30383935303161646339393361393130613266663337373364626635646430326465
|
||||||
|
rndc_key: !vault >
|
||||||
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
36386562613235363931396632656535383336313537636431643338353438313231623839313031
|
||||||
|
3830616135393732353265666664353963393366343461630a633365396165653761353762383739
|
||||||
|
66303862376465626435633964313237643230653463353662343831646464633639383336323863
|
||||||
|
6139333234386565620a653438613165626131653834633931343766343162653932373161653362
|
||||||
|
38303139333536656263656163623333313234393666353766363565633732366165
|
||||||
|
radius_ldap_password: !vault >
|
||||||
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
31643037313539376337363739616361363339616235623433656131306539373030373731643934
|
||||||
|
3432656465343430366366646237326137656134346562360a306538303762313261616632643135
|
||||||
|
39316439653932396134646432633262326631363765643564306565636363356335653539656531
|
||||||
|
6234636463376364620a636133346337306437643939376531633564633737333133363065633031
|
||||||
|
61643731646163323636343837373761303930323961653663343135303731623133
|
||||||
|
radius_client_password: !vault >
|
||||||
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
62313333666335316231396365653635356639626563613738363137383434343437393833393934
|
||||||
|
6439646632303536393438306234323862363532393733630a356136393539363161346631623161
|
||||||
|
37636365653331333735353166646164613732303035613231353237343139623137396364643637
|
||||||
|
3261656465336435630a666466643734373830633933613266663631343730386530633839386239
|
||||||
|
62623434663130363637303035363434313566376661356362663238666166343534
|
||||||
|
awx_smtp_password: !vault >
|
||||||
|
$ANSIBLE_VAULT;1.1;AES256
|
||||||
|
62393936623766653737356136353765336265636136616330306537393638646663326663346138
|
||||||
|
3631616362363163393036613564623864383365633634660a366563363836363061623566393361
|
||||||
|
37633364633631333130346332613235303762316435313535613664323830656363353237373561
|
||||||
|
3866653365636431630a303262666662376662623862663461633361333037643863353135343836
|
||||||
|
61383730366664353730616331666139376234313562383163613736353231666533
|
||||||
|
grub_code: >
|
||||||
|
grub.pbkdf2.sha512.10000.C91C8756466E7DB535C77DB7FBDBF3D33A39A0712DE3A9AFD38BE22
|
||||||
|
29139E86F23C4E007E6B76DDFDBBE4B2B32764B4EFFECF208C70BA9FECC6BB3FF68A6BA05.8EA385
|
||||||
|
7B795AF29FF5C6E003E31EC4D79B84813175C7A56A8A12F3F30A19B501D7127C0307277FB37073EE
|
||||||
|
0246BCFDA9BD4EDDC3A1EE8176D25CD37B7FB07AF7
|
|
@ -0,0 +1,42 @@
|
||||||
|
[laboratory]
|
||||||
|
corelab-proxy1 ansible_host=corelab-proxy1.lab.verdnatura.es
|
||||||
|
docker-itlab ansible_host=docker-itlab.lab.verdnatura.es
|
||||||
|
zammad ansible_host=zammad.lab.verdnatura.es
|
||||||
|
matrix ansible_host=matrix.lab.verdnatura.es
|
||||||
|
ansible-test ansible_host=ansible-test.lab.verdnatura.es
|
||||||
|
|
||||||
|
[network]
|
||||||
|
opnsense1-test ansible_host=opnsense1-test.lab.verdnatura.es
|
||||||
|
opnsense2-test ansible_host=opnsense2-test.lab.verdnatura.es
|
||||||
|
|
||||||
|
[cephlab]
|
||||||
|
cephlab01 ansible_host=cephlab01.lab.verdnatura.es
|
||||||
|
cephlab02 ansible_host=cephlab02.lab.verdnatura.es
|
||||||
|
cephlab03 ansible_host=cephlab03.lab.verdnatura.es
|
||||||
|
|
||||||
|
[cephtest]
|
||||||
|
cephtest01 ansible_host=cephtest01.lab.verdnatura.es
|
||||||
|
cephtest02 ansible_host=cephtest02.lab.verdnatura.es
|
||||||
|
cephtest03 ansible_host=cephtest03.lab.verdnatura.es
|
||||||
|
|
||||||
|
[kubepre]
|
||||||
|
kubepre-helm ansible_host=kubepre-helm.lab.verdnatura.es
|
||||||
|
kubepre-proxy1 ansible_host=kubepre-proxy1.lab.verdnatura.es
|
||||||
|
kubepre-proxy2 ansible_host=kubepre-proxy2.lab.verdnatura.es
|
||||||
|
kubepre-master1 ansible_host=kubepre-master1.lab.verdnatura.es
|
||||||
|
kubepre-master2 ansible_host=kubepre-master2.lab.verdnatura.es
|
||||||
|
kubepre-master3 ansible_host=kubepre-master3.lab.verdnatura.es
|
||||||
|
kubepre-worker1 ansible_host=kubepre-worker1.lab.verdnatura.es
|
||||||
|
kubepre-worker2 ansible_host=kubepre-worker2.lab.verdnatura.es
|
||||||
|
kubepre-worker3 ansible_host=kubepre-worker3.lab.verdnatura.es
|
||||||
|
kubepre-worker4 ansible_host=kubepre-worker4.lab.verdnatura.es
|
||||||
|
|
||||||
|
[kubetest]
|
||||||
|
kubetest-helm ansible_host=kubetest-helm.lab.verdnatura.es
|
||||||
|
kubetest-master01 ansible_host=kubetest-master01.lab.verdnatura.es
|
||||||
|
kubetest-master02 ansible_host=kubetest-master02.lab.verdnatura.es
|
||||||
|
kubetest-master03 ansible_host=kubetest-master03.lab.verdnatura.es
|
||||||
|
kubetest-worker01 ansible_host=kubetest-worker01.lab.verdnatura.es
|
||||||
|
kubetest-worker02 ansible_host=kubetest-worker02.lab.verdnatura.es
|
||||||
|
kubetest-worker03 ansible_host=kubetest-worker03.lab.verdnatura.es
|
||||||
|
kubetest-worker04 ansible_host=kubetest-worker04.lab.verdnatura.es
|
|
@ -1,5 +1,56 @@
|
||||||
[servers]
|
[ceph]
|
||||||
|
ceph1 ansible_host=ceph1.core.dc.verdnatura.es
|
||||||
|
ceph2 ansible_host=ceph2.core.dc.verdnatura.es
|
||||||
|
ceph3 ansible_host=ceph3.core.dc.verdnatura.es
|
||||||
|
|
||||||
|
[ceph_gw]
|
||||||
|
ceph-gw1 ansible_host=ceph-gw1.core.dc.verdnatura.es
|
||||||
|
ceph-gw2 ansible_host=ceph-gw2.core.dc.verdnatura.es
|
||||||
|
|
||||||
|
[pve]
|
||||||
|
pve01 ansible_host=pve01.core.dc.verdnatura.es
|
||||||
|
pve02 ansible_host=pve02.core.dc.verdnatura.es
|
||||||
|
pve03 ansible_host=pve03.core.dc.verdnatura.es
|
||||||
|
pve04 ansible_host=pve04.core.dc.verdnatura.es
|
||||||
|
pve05 ansible_host=pve04.core.dc.verdnatura.es
|
||||||
|
|
||||||
|
[infra:children]
|
||||||
|
ceph
|
||||||
|
ceph_gw
|
||||||
|
pve
|
||||||
|
|
||||||
|
[kube_master]
|
||||||
|
kube-master1 ansible_host=kube-master1.servers.dc.verdnatura.es
|
||||||
|
kube-master2 ansible_host=kube-master2.servers.dc.verdnatura.es
|
||||||
|
kube-master3 ansible_host=kube-master3.servers.dc.verdnatura.es
|
||||||
|
kube-master4 ansible_host=kube-master4.servers.dc.verdnatura.es
|
||||||
|
kube-master5 ansible_host=kube-master5.servers.dc.verdnatura.es
|
||||||
|
|
||||||
|
[kube_worker]
|
||||||
|
kube-worker1 ansible_host=kube-worker1.servers.dc.verdnatura.es
|
||||||
|
kube-worker2 ansible_host=kube-worker2.servers.dc.verdnatura.es
|
||||||
|
kube-worker3 ansible_host=kube-worker3.servers.dc.verdnatura.es
|
||||||
|
kube-worker4 ansible_host=kube-worker4.servers.dc.verdnatura.es
|
||||||
|
kube-worker5 ansible_host=kube-worker5.servers.dc.verdnatura.es
|
||||||
|
|
||||||
|
[kube_proxy]
|
||||||
|
kube-proxy1 ansible_host=kube-proxy1.servers.dc.verdnatura.es
|
||||||
|
kube-proxy2 ansible_host=kube-proxy2.servers.dc.verdnatura.es
|
||||||
|
|
||||||
|
[kube_helper]
|
||||||
|
kube-helm ansible_host=kube-helm.servers.dc.verdnatura.es
|
||||||
|
|
||||||
|
[kube:children]
|
||||||
|
kube_master
|
||||||
|
kube_worker
|
||||||
|
kube_proxy
|
||||||
|
kube_helper
|
||||||
|
|
||||||
|
[core_helper]
|
||||||
|
core-agent ansible_host=core-agent.core.dc.verdnatura.es
|
||||||
|
core-proxy ansible_host=core-proxy.core.dc.verdnatura.es
|
||||||
|
|
||||||
|
[servers]
|
||||||
dhcp1 ansible_host=dhcp1.servers.dc.verdnatura.es
|
dhcp1 ansible_host=dhcp1.servers.dc.verdnatura.es
|
||||||
dhcp2 ansible_host=dhcp2.servers.dc.verdnatura.es
|
dhcp2 ansible_host=dhcp2.servers.dc.verdnatura.es
|
||||||
ns1 ansible_host=ns1.servers.dc.verdnatura.es
|
ns1 ansible_host=ns1.servers.dc.verdnatura.es
|
||||||
|
@ -35,9 +86,6 @@ test-db-proxy1 ansible_host=test-db-proxy1.servers.dc.verdnatura.es
|
||||||
test-db-proxy2 ansible_host=test-db-proxy2.servers.dc.verdnatura.es
|
test-db-proxy2 ansible_host=test-db-proxy2.servers.dc.verdnatura.es
|
||||||
monthly-db ansible_host=monthly-db.servers.dc.verdnatura.es
|
monthly-db ansible_host=monthly-db.servers.dc.verdnatura.es
|
||||||
dev-db ansible_host=dev-db.servers.dc.verdnatura.es
|
dev-db ansible_host=dev-db.servers.dc.verdnatura.es
|
||||||
tftp ansible_host=tftp.backup.dc.verdnatura.es
|
|
||||||
core-agent ansible_host=core-agent.core.dc.verdnatura.es
|
|
||||||
core-proxy ansible_host=core-proxy.core.dc.verdnatura.es
|
|
||||||
spamd-db ansible_host=spamd-db.servers.dc.verdnatura.es
|
spamd-db ansible_host=spamd-db.servers.dc.verdnatura.es
|
||||||
spamd ansible_host=spamd.servers.dc.verdnatura.es
|
spamd ansible_host=spamd.servers.dc.verdnatura.es
|
||||||
dovecot ansible_host=dovecot.servers.dc.verdnatura.es
|
dovecot ansible_host=dovecot.servers.dc.verdnatura.es
|
||||||
|
@ -45,103 +93,33 @@ debian12-vm ansible_host=debian12-vm.servers.dc.verdnatura.es
|
||||||
freeradiustotp ansible_host=freeradiustotp.servers.dc.verdnatura.es
|
freeradiustotp ansible_host=freeradiustotp.servers.dc.verdnatura.es
|
||||||
iventoy ansible_host=iventoy.servers.dc.verdnatura.es
|
iventoy ansible_host=iventoy.servers.dc.verdnatura.es
|
||||||
|
|
||||||
[devices]
|
|
||||||
|
|
||||||
nas2 ansible_host=nas2.servers.dc.verdnatura.es
|
|
||||||
|
|
||||||
[windows]
|
[windows]
|
||||||
|
|
||||||
a3 ansible_host=a3.outsource.dc.verdnatura.es
|
|
||||||
rsat ansible_host=rsat.servers.dc.verdnatura.es
|
rsat ansible_host=rsat.servers.dc.verdnatura.es
|
||||||
contaplus ansible_host=contaplus.outsource.dc.verdnatura.es
|
|
||||||
dipole ansible_host=dipole.outsource.dc.verdnatura.es
|
|
||||||
printserver ansible_host=printserver.servers.dc.verdnatura.es
|
printserver ansible_host=printserver.servers.dc.verdnatura.es
|
||||||
sage ansible_host=sage.outsource.dc.verdnatura.es
|
|
||||||
mrw ansible_host=mrw.servers.dc.verdnatura.es
|
mrw ansible_host=mrw.servers.dc.verdnatura.es
|
||||||
ts1 ansible_host=ts1.rds.dc.verdnatura.es
|
ts1 ansible_host=ts1.rds.dc.verdnatura.es
|
||||||
ts2 ansible_host=ts2.rds.dc.verdnatura.es
|
ts2 ansible_host=ts2.rds.dc.verdnatura.es
|
||||||
rds-licenses ansible_host=rds-licenses.rds.dc.verdnatura.es
|
rds-licenses ansible_host=rds-licenses.rds.dc.verdnatura.es
|
||||||
integra2 ansible_host=integra2.servers.dc.verdnatura.es
|
integra2 ansible_host=integra2.servers.dc.verdnatura.es
|
||||||
|
|
||||||
|
[outsource]
|
||||||
|
a3 ansible_host=a3.outsource.dc.verdnatura.es
|
||||||
|
contaplus ansible_host=contaplus.outsource.dc.verdnatura.es
|
||||||
|
dipole ansible_host=dipole.outsource.dc.verdnatura.es
|
||||||
|
sage ansible_host=sage.outsource.dc.verdnatura.es
|
||||||
docuware ansible_host=docuware.outsource.dc.verdnatura.es
|
docuware ansible_host=docuware.outsource.dc.verdnatura.es
|
||||||
|
|
||||||
[backup]
|
[backup]
|
||||||
|
|
||||||
vm-backup ansible_host=vm-backup.backup.dc.verdnatura.es
|
|
||||||
kube-backup ansible_host=kube-backup.backup.dc.verdnatura.es
|
|
||||||
backup-nas ansible_host=backup-nas.backup.dc.verdnatura.es
|
|
||||||
bacularis ansible_host=bacularis.backup.dc.verdnatura.es
|
|
||||||
bacula-dir ansible_host=bacula-dir.backup.dc.verdnatura.es
|
bacula-dir ansible_host=bacula-dir.backup.dc.verdnatura.es
|
||||||
bacula-db ansible_host=bacula-db.backup.dc.verdnatura.es
|
bacula-db ansible_host=bacula-db.backup.dc.verdnatura.es
|
||||||
|
bacularis ansible_host=bacularis.backup.dc.verdnatura.es
|
||||||
|
backup-nas ansible_host=backup-nas.backup.dc.verdnatura.es
|
||||||
|
tftp ansible_host=tftp.backup.dc.verdnatura.es
|
||||||
|
kube-backup ansible_host=kube-backup.backup.dc.verdnatura.es
|
||||||
|
|
||||||
[pve]
|
[guest:children]
|
||||||
|
core_helper
|
||||||
pve01 ansible_host=pve01.core.dc.verdnatura.es
|
servers
|
||||||
pve02 ansible_host=pve02.core.dc.verdnatura.es
|
windows
|
||||||
pve03 ansible_host=pve03.core.dc.verdnatura.es
|
outsource
|
||||||
pve04 ansible_host=pve04.core.dc.verdnatura.es
|
backup
|
||||||
|
|
||||||
|
|
||||||
[pve-ilo]
|
|
||||||
|
|
||||||
pve01-ilo ansible_host=pve01-ilo.core.dc.verdnatura.es
|
|
||||||
pve02-ilo ansible_host=pve02-ilo.core.dc.verdnatura.es
|
|
||||||
pve03-ilo ansible_host=pve03-ilo.core.dc.verdnatura.es
|
|
||||||
pve04-ilo ansible_host=pve04-ilo.core.dc.verdnatura.es
|
|
||||||
pve05-ilo ansible_host=pve05-ilo.core.dc.verdnatura.es
|
|
||||||
|
|
||||||
[kube-master]
|
|
||||||
|
|
||||||
kube-master1 ansible_host=kube-master1.servers.dc.verdnatura.es
|
|
||||||
kube-master2 ansible_host=kube-master2.servers.dc.verdnatura.es
|
|
||||||
kube-master3 ansible_host=kube-master3.servers.dc.verdnatura.es
|
|
||||||
|
|
||||||
[kube-worker]
|
|
||||||
|
|
||||||
kube-worker1 ansible_host=kube-worker1.servers.dc.verdnatura.es
|
|
||||||
kube-worker2 ansible_host=kube-worker2.servers.dc.verdnatura.es
|
|
||||||
kube-worker3 ansible_host=kube-worker3.servers.dc.verdnatura.es
|
|
||||||
kube-worker4 ansible_host=kube-worker4.servers.dc.verdnatura.es
|
|
||||||
kube-worker5 ansible_host=kube-worker5.servers.dc.verdnatura.es
|
|
||||||
|
|
||||||
[kube-proxy]
|
|
||||||
|
|
||||||
kube-proxy1 ansible_host=kube-proxy1.servers.dc.verdnatura.es
|
|
||||||
kube-proxy2 ansible_host=kube-proxy2.servers.dc.verdnatura.es
|
|
||||||
|
|
||||||
[kube-backup]
|
|
||||||
|
|
||||||
kube-helm ansible_host=kube-helm.servers.dc.verdnatura.es
|
|
||||||
|
|
||||||
[kube:children]
|
|
||||||
|
|
||||||
kube-master
|
|
||||||
kube-worker
|
|
||||||
kube-proxy
|
|
||||||
kube-backup
|
|
||||||
|
|
||||||
[test]
|
|
||||||
|
|
||||||
W2019 ansible_host=10.1.5.224
|
|
||||||
graphite ansible_host=graphite.lab.verdnatura.es
|
|
||||||
metric1 ansible_host=metric1.lab.verdnatura.es
|
|
||||||
plantilladebian12 ansible_host=plantilladebian12.lab.verdnatura.es
|
|
||||||
docker-test ansible_host=docker-test.lab.verdnatura.es
|
|
||||||
nagios4-test ansible_host=nagios4-test.lab.verdnatura.es
|
|
||||||
nagios4-test2 ansible_host=nagios4-test2.lab.verdnatura.es
|
|
||||||
cephlab01 ansible_host=cephlab01.lab.verdnatura.es
|
|
||||||
cephlab02 ansible_host=cephlab02.lab.verdnatura.es
|
|
||||||
cephlab03 ansible_host=cephlab03.lab.verdnatura.es
|
|
||||||
core-proxytest ansible_host=core-proxytest.lab.verdnatura.es
|
|
||||||
openldap-test ansible_host=openldap-test.lab.verdnatura.es
|
|
||||||
test-playbook ansible_host=test-playbook.lab.verdnatura.es
|
|
||||||
zabbix-frontend-web ansible_host=zabbix-frontend-web.lab.verdnatura.es
|
|
||||||
zabbix-server-db ansible_host=zabbix-server-db.lab.verdnatura.es
|
|
||||||
testansible ansible_host=10.29.6.79
|
|
||||||
freeradius-playbook ansible_host=freeradius-playbook.lab.verdnatura.es
|
|
||||||
debian-vn-test ansible_host=debian-vn-test.lab.verdnatura.es
|
|
||||||
iventoy-test ansible_host=iventoy-test.lab.verdnatura.es
|
|
||||||
kubelab-proxy1 ansible_host=kubelab-proxy1.lab.verdnatura.es
|
|
||||||
openvpn-freeradius ansible_host=openvpn-freeradius.lab.verdnatura.es
|
|
||||||
vm-debian12 ansible_host=vm-debian12.lab.verdnatura.es
|
|
||||||
docker-itlab ansible_host=10.29.2.153
|
|
||||||
test1 ansible_host=10.29.2.254
|
|
|
@ -1,162 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
# - name: "[CONFIG AWX-USER] Create awx user and config ssh-key"
|
|
||||||
# import_role:
|
|
||||||
# name: config-awx-user
|
|
||||||
# tags: config-awx-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG ROOT USER] Configure SSH root user"
|
|
||||||
import_role:
|
|
||||||
name: config-root-user
|
|
||||||
when: root_user_enabled is defined and root_user_enabled
|
|
||||||
tags: config-root-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTNAME] Configure hostname"
|
|
||||||
import_role:
|
|
||||||
name: config-hostname
|
|
||||||
when: hostname_enabled is defined and hostname_enabled
|
|
||||||
tags: config-hostname_config
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTS FILE] Configure hosts file"
|
|
||||||
import_role:
|
|
||||||
name: config-hosts
|
|
||||||
when: hosts_enabled is defined and hosts_enabled
|
|
||||||
tags: config-hosts_config_config
|
|
||||||
|
|
||||||
- name: "[CONFIG RESOLV FILE] Configure resolv file"
|
|
||||||
import_role:
|
|
||||||
name: config-resolv
|
|
||||||
when: resolv_enabled is defined and resolv_enabled
|
|
||||||
tags: config-resolv_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG BASE DEBIAN OS] Configure debian os"
|
|
||||||
# import_role:
|
|
||||||
# name: config-base-debian-os
|
|
||||||
# tags: config-base-debian-os_config
|
|
||||||
|
|
||||||
- name: "[CONFIG UPDATE] Config update"
|
|
||||||
import_role:
|
|
||||||
name: config-update-and-upgrade-packages
|
|
||||||
when: update_enabled is defined and update_enabled
|
|
||||||
tags: config-update-and-upgrade-packages_config
|
|
||||||
|
|
||||||
- name: "[CONFIG INSTALL PACKAGES] Install packages"
|
|
||||||
import_role:
|
|
||||||
name: config-install-packages
|
|
||||||
when: packages_enabled is defined and packages_enabled
|
|
||||||
tags: config-install-packages_config
|
|
||||||
|
|
||||||
- name: "[CONFIG RELAYHOST SMTP] Config relayhost smtp"
|
|
||||||
import_role:
|
|
||||||
name: config-relayhost-smtp
|
|
||||||
when: relay_host_enabled is defined and relay_host_enabled
|
|
||||||
tags: config-relayhost-smtp_config
|
|
||||||
|
|
||||||
- name: "[CONFIG CENTRALIZED AUTH] Config centralized auth"
|
|
||||||
import_role:
|
|
||||||
name: config-centralized-auth
|
|
||||||
when: centralized_auth_enabled is defined and centralized_auth_enabled
|
|
||||||
tags: config-centralized-auth_config
|
|
||||||
|
|
||||||
- name: "[CONFIG SUDOERS] Config sudoers"
|
|
||||||
import_role:
|
|
||||||
name: config-sudoers
|
|
||||||
when: sudoers_enabled is defined and sudoers_enabled
|
|
||||||
tags: config-sudoers_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG SECURE GRUB] configure secure grub"
|
|
||||||
# import_role:
|
|
||||||
# name: config-secure-grub
|
|
||||||
# when: secure_grub_enabled is defined and secure_grub_enabled
|
|
||||||
# tags: config-secure-grub_config
|
|
||||||
|
|
||||||
- name: "[CONFIG VIM OPTIONS] Config vim options"
|
|
||||||
import_role:
|
|
||||||
name: config-vim-options
|
|
||||||
when: vim_options_enabled is defined and vim_options_enabled
|
|
||||||
tags: config-vim-options_config
|
|
||||||
|
|
||||||
- name: "[CONFIG MOTD] Config motd"
|
|
||||||
import_role:
|
|
||||||
name: config-motd
|
|
||||||
when: motd_enabled is defined and motd_enabled
|
|
||||||
tags: config-motd_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG HOT PLUG] Install and configure hot plug"
|
|
||||||
# import_role:
|
|
||||||
# name: config-hot-plug
|
|
||||||
# when: hot_plug_enabled is defined and hot_plug_enabled
|
|
||||||
# tags: config-hot-plug_config
|
|
||||||
|
|
||||||
- name: "[CONFIG LOCALES] Set locales"
|
|
||||||
import_role:
|
|
||||||
name: config-locales
|
|
||||||
when: locales_enabled is defined and locales_enabled
|
|
||||||
tags: config-locales_config
|
|
||||||
|
|
||||||
- name: "[CONFIG TZDATA] Set timezone"
|
|
||||||
import_role:
|
|
||||||
name: config-tzdata
|
|
||||||
when: tzdata_enabled is defined and tzdata_enabled
|
|
||||||
tags: config-tzdata_config
|
|
||||||
|
|
||||||
- name: "[CONFIG REPO VN] Add-repos-vn"
|
|
||||||
import_role:
|
|
||||||
name: config-repo-vn
|
|
||||||
when: repo_vn_enabled is defined and repo_vn_enabled
|
|
||||||
tags: config-repo-vn_config
|
|
||||||
|
|
||||||
- name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"
|
|
||||||
import_role:
|
|
||||||
name: config-fail2ban
|
|
||||||
when: fail2ban_enabled is defined and fail2ban_enabled
|
|
||||||
tags: config-fail2ban_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NAGIOS NRPE] Install and configure nagios nrpe service"
|
|
||||||
import_role:
|
|
||||||
name: config-nagios-nrpe
|
|
||||||
when: nagios_nrpe_enabled is defined and nagios_nrpe_enabled
|
|
||||||
tags: config-nagios-nrpe_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG SERVER TYPE] Install guest side"
|
|
||||||
# import_role:
|
|
||||||
# name: config-server-type
|
|
||||||
# when: server_type_enabled is defined and server_type_enabled
|
|
||||||
# tags: config-server-type_config
|
|
||||||
|
|
||||||
# NO HACE FALTA , PROXMOX CT utiliza ntp client de proxmox
|
|
||||||
# - name: "[CONFIG NTP] Install and configure ntp"
|
|
||||||
# import_role:
|
|
||||||
# name: config-ntp
|
|
||||||
# when: ntp_enabled is defined and ntp_enabled
|
|
||||||
# tags: config-ntp_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG AUTOFS HOMES] Install and configure AUTOFS HOMES"
|
|
||||||
# import_role:
|
|
||||||
# name: config-autofs-homes
|
|
||||||
# when: autofs_homes_enabled is defined and autofs_homes_enabled
|
|
||||||
# tags: config-autofs-homes_config
|
|
||||||
|
|
||||||
- name: "[CONFIG ZABBIX AGENT] Install and configure ZABBIX AGENT"
|
|
||||||
import_role:
|
|
||||||
name: config-zabbix-agent
|
|
||||||
when: zabbix_agent_enabled is defined and zabbix_agent_enabled
|
|
||||||
tags: config-zabbix-agent_config
|
|
||||||
|
|
||||||
#handlers:
|
|
||||||
# - include_tasks: roles/{{ item }}/handlers/main.yaml
|
|
||||||
# with_items:
|
|
||||||
# - config-awx-user
|
|
||||||
# - config-root-user
|
|
||||||
# - config-base-debian-os
|
|
||||||
# - config-repo-vn
|
|
||||||
# - config-fail2ban # or hacer
|
|
||||||
# - config-nagios-nrpe # or hacer
|
|
||||||
# - config-server-type
|
|
|
@ -1,76 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
# - name: "[CONFIG AWX-USER] Create awx user and config ssh-key"
|
|
||||||
# import_role:
|
|
||||||
# name: config-awx-user
|
|
||||||
# tags: config-awx-user_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG ROOT USER] Configure SSH root user"
|
|
||||||
# import_role:
|
|
||||||
# name: config-root-user
|
|
||||||
# tags: config-root-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG BASE DEBIAN OS] Configure debian os"
|
|
||||||
import_role:
|
|
||||||
name: config-base-debian-os
|
|
||||||
# tags: config-base-debian-os_config
|
|
||||||
|
|
||||||
- name: "[CONFIG LOCALES] Set locales"
|
|
||||||
import_role:
|
|
||||||
name: config-locales
|
|
||||||
|
|
||||||
- name: "[CONFIG TZDATA] Set timezone"
|
|
||||||
import_role:
|
|
||||||
name: config-tzdata
|
|
||||||
|
|
||||||
- name: "[CONFIG REPO VN] Add-repos-vn"
|
|
||||||
import_role:
|
|
||||||
name: config-repo-vn
|
|
||||||
# tags: config-repo-vn_config
|
|
||||||
|
|
||||||
- name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"
|
|
||||||
import_role:
|
|
||||||
name: config-fail2ban
|
|
||||||
# tags: config-fail2ban_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NAGIOS NRPE] Install and configure nagios nrpe service"
|
|
||||||
import_role:
|
|
||||||
name: config-nagios-nrpe
|
|
||||||
# tags: config-nagios-nrpe_config
|
|
||||||
|
|
||||||
# - name: "[CONFIG SERVER TYPE] Install guest side"
|
|
||||||
# import_role:
|
|
||||||
# name: config-server-type
|
|
||||||
# tags: config-server-type_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NTP] Install and configure ntp"
|
|
||||||
import_role:
|
|
||||||
name: config-ntp
|
|
||||||
# tags: config-ntp_config
|
|
||||||
|
|
||||||
- name: "[CONFIG AUTOFS HOMES] Install and configure AUTOFS HOMES"
|
|
||||||
import_role:
|
|
||||||
name: config-autofs-homes
|
|
||||||
|
|
||||||
- name: "[CONFIG ZABBIX AGENT] Install and configure ZABBIX AGENT"
|
|
||||||
import_role:
|
|
||||||
name: config-zabbix-agent
|
|
||||||
# tags: config-zabbix-agent_config
|
|
||||||
|
|
||||||
#handlers:
|
|
||||||
# - include_tasks: roles/{{ item }}/handlers/main.yaml
|
|
||||||
# with_items:
|
|
||||||
# - config-awx-user
|
|
||||||
# - config-root-user
|
|
||||||
# - config-base-debian-os
|
|
||||||
# - config-repo-vn
|
|
||||||
# - config-fail2ban # or hacer
|
|
||||||
# - config-nagios-nrpe # or hacer
|
|
||||||
# - config-server-type
|
|
|
@ -1,156 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
# - name: "[CONFIG AWX-USER] Create awx user and config ssh-key"
|
|
||||||
# import_role:
|
|
||||||
# name: config-awx-user
|
|
||||||
# tags: config-awx-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG ROOT USER] Configure SSH root user"
|
|
||||||
import_role:
|
|
||||||
name: config-root-user
|
|
||||||
when: root_user_enabled is defined and root_user_enabled
|
|
||||||
tags: config-root-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTNAME] Configure hostname"
|
|
||||||
import_role:
|
|
||||||
name: config-hostname
|
|
||||||
when: hostname_enabled is defined and hostname_enabled
|
|
||||||
tags: config-hostname_config
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTS FILE] Configure hosts file"
|
|
||||||
import_role:
|
|
||||||
name: config-hosts
|
|
||||||
when: hosts_enabled is defined and hosts_enabled
|
|
||||||
tags: config-hosts_config_config
|
|
||||||
|
|
||||||
- name: "[CONFIG RESOLV FILE] Configure resolv file"
|
|
||||||
import_role:
|
|
||||||
name: config-resolv
|
|
||||||
when: resolv_enabled is defined and resolv_enabled
|
|
||||||
tags: config-resolv_config
|
|
||||||
|
|
||||||
- name: "[CONFIG UPDATE] Config update"
|
|
||||||
import_role:
|
|
||||||
name: config-update-and-upgrade-packages
|
|
||||||
when: update_enabled is defined and update_enabled
|
|
||||||
tags: config-update-and-upgrade-packages_config
|
|
||||||
|
|
||||||
- name: "[CONFIG INSTALL PACKAGES] Install packages"
|
|
||||||
import_role:
|
|
||||||
name: config-install-packages
|
|
||||||
when: packages_enabled is defined and packages_enabled
|
|
||||||
tags: config-install-packages_config
|
|
||||||
|
|
||||||
- name: "[CONFIG RELAYHOST SMTP] Config relayhost smtp"
|
|
||||||
import_role:
|
|
||||||
name: config-relayhost-smtp
|
|
||||||
when: relay_host_enabled is defined and relay_host_enabled
|
|
||||||
tags: config-relayhost-smtp_config
|
|
||||||
|
|
||||||
- name: "[CONFIG CENTRALIZED AUTH] Config centralized auth"
|
|
||||||
import_role:
|
|
||||||
name: config-centralized-auth
|
|
||||||
when: centralized_auth_enabled is defined and centralized_auth_enabled
|
|
||||||
tags: config-centralized-auth_config
|
|
||||||
|
|
||||||
- name: "[CONFIG SUDOERS] Config sudoers"
|
|
||||||
import_role:
|
|
||||||
name: config-sudoers
|
|
||||||
when: sudoers_enabled is defined and sudoers_enabled
|
|
||||||
tags: config-sudoers_config
|
|
||||||
|
|
||||||
- name: "[CONFIG SECURE GRUB] configure secure grub"
|
|
||||||
import_role:
|
|
||||||
name: config-secure-grub
|
|
||||||
when: secure_grub_enabled is defined and secure_grub_enabled
|
|
||||||
tags: config-secure-grub_config
|
|
||||||
|
|
||||||
- name: "[CONFIG VIM OPTIONS] Config vim options"
|
|
||||||
import_role:
|
|
||||||
name: config-vim-options
|
|
||||||
when: vim_options_enabled is defined and vim_options_enabled
|
|
||||||
tags: config-vim-options_config
|
|
||||||
|
|
||||||
- name: "[CONFIG MOTD] Config motd"
|
|
||||||
import_role:
|
|
||||||
name: config-motd
|
|
||||||
when: motd_enabled is defined and motd_enabled
|
|
||||||
tags: config-motd_config
|
|
||||||
|
|
||||||
- name: "[CONFIG HOT PLUG] Install and configure hot plug"
|
|
||||||
import_role:
|
|
||||||
name: config-hot-plug
|
|
||||||
when: hot_plug_enabled is defined and hot_plug_enabled
|
|
||||||
tags: config-hot-plug_config
|
|
||||||
|
|
||||||
- name: "[CONFIG LOCALES] Set locales"
|
|
||||||
import_role:
|
|
||||||
name: config-locales
|
|
||||||
when: locales_enabled is defined and locales_enabled
|
|
||||||
tags: config-locales_config
|
|
||||||
|
|
||||||
- name: "[CONFIG TZDATA] Set timezone"
|
|
||||||
import_role:
|
|
||||||
name: config-tzdata
|
|
||||||
when: tzdata_enabled is defined and tzdata_enabled
|
|
||||||
tags: config-tzdata_config
|
|
||||||
|
|
||||||
- name: "[CONFIG REPO VN] Add-repos-vn"
|
|
||||||
import_role:
|
|
||||||
name: config-repo-vn
|
|
||||||
when: repo_vn_enabled is defined and repo_vn_enabled
|
|
||||||
tags: config-repo-vn_config
|
|
||||||
|
|
||||||
- name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"
|
|
||||||
import_role:
|
|
||||||
name: config-fail2ban
|
|
||||||
when: fail2ban_enabled is defined and fail2ban_enabled
|
|
||||||
tags: config-fail2ban_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NAGIOS NRPE] Install and configure nagios nrpe service"
|
|
||||||
import_role:
|
|
||||||
name: config-nagios-nrpe
|
|
||||||
when: nagios_nrpe_enabled is defined and nagios_nrpe_enabled
|
|
||||||
tags: config-nagios-nrpe_config
|
|
||||||
|
|
||||||
- name: "[CONFIG SERVER TYPE] Install guest side"
|
|
||||||
import_role:
|
|
||||||
name: config-server-type
|
|
||||||
when: server_type_enabled is defined and server_type_enabled
|
|
||||||
tags: config-server-type_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NTP] Install and configure ntp"
|
|
||||||
import_role:
|
|
||||||
name: config-ntp
|
|
||||||
when: ntp_enabled is defined and ntp_enabled
|
|
||||||
tags: config-ntp_config
|
|
||||||
|
|
||||||
- name: "[CONFIG AUTOFS HOMES] Install and configure AUTOFS HOMES"
|
|
||||||
import_role:
|
|
||||||
name: config-autofs-homes
|
|
||||||
when: autofs_homes_enabled is defined and autofs_homes_enabled
|
|
||||||
tags: config-autofs-homes_config
|
|
||||||
|
|
||||||
- name: "[CONFIG ZABBIX AGENT] Install and configure ZABBIX AGENT"
|
|
||||||
import_role:
|
|
||||||
name: config-zabbix-agent
|
|
||||||
when: zabbix_agent_enabled is defined and zabbix_agent_enabled
|
|
||||||
tags: config-zabbix-agent_config
|
|
||||||
|
|
||||||
#handlers:
|
|
||||||
# - include_tasks: roles/{{ item }}/handlers/main.yaml
|
|
||||||
# with_items:
|
|
||||||
# - config-awx-user
|
|
||||||
# - config-root-user
|
|
||||||
# - config-base-debian-os
|
|
||||||
# - config-repo-vn
|
|
||||||
# - config-fail2ban # or hacer
|
|
||||||
# - config-nagios-nrpe # or hacer
|
|
||||||
# - config-server-type
|
|
|
@ -1,72 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
# - name: "[CONFIG AWX-USER] Create awx user and config ssh-key"
|
|
||||||
# import_role:
|
|
||||||
# name: config-awx-user
|
|
||||||
# tags: config-awx-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG ROOT USER] Configure SSH root user"
|
|
||||||
import_role:
|
|
||||||
name: config-root-user
|
|
||||||
tags: config-root-user_config
|
|
||||||
|
|
||||||
- name: "[CONFIG BASE DEBIAN OS] Configure debian os"
|
|
||||||
import_role:
|
|
||||||
name: config-base-debian-os
|
|
||||||
tags: config-base-debian-os_config
|
|
||||||
|
|
||||||
- name: "[CONFIG LOCALES] Set locales"
|
|
||||||
import_role:
|
|
||||||
name: config-locales
|
|
||||||
|
|
||||||
- name: "[CONFIG TZDATA] Set timezone"
|
|
||||||
import_role:
|
|
||||||
name: config-tzdata
|
|
||||||
|
|
||||||
- name: "[CONFIG REPO VN] Add-repos-vn"
|
|
||||||
import_role:
|
|
||||||
name: config-repo-vn
|
|
||||||
tags: config-repo-vn_config
|
|
||||||
|
|
||||||
- name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"
|
|
||||||
import_role:
|
|
||||||
name: config-fail2ban
|
|
||||||
tags: config-fail2ban_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NAGIOS NRPE] Install and configure nagios nrpe service"
|
|
||||||
import_role:
|
|
||||||
name: config-nagios-nrpe
|
|
||||||
tags: config-nagios-nrpe_config
|
|
||||||
|
|
||||||
- name: "[CONFIG SERVER TYPE] Install guest side"
|
|
||||||
import_role:
|
|
||||||
name: config-server-type
|
|
||||||
tags: config-server-type_config
|
|
||||||
|
|
||||||
- name: "[CONFIG NTP] Install and configure ntp"
|
|
||||||
import_role:
|
|
||||||
name: config-ntp
|
|
||||||
tags: config-ntp_config
|
|
||||||
|
|
||||||
- name: "[CONFIG ZABBIX AGENT] Install and configure ZABBIX AGENT"
|
|
||||||
import_role:
|
|
||||||
name: config-zabbix-agent
|
|
||||||
tags: config-zabbix-agent_config
|
|
||||||
|
|
||||||
#handlers:
|
|
||||||
# - include_tasks: roles/{{ item }}/handlers/main.yaml
|
|
||||||
# with_items:
|
|
||||||
# - config-awx-user
|
|
||||||
# - config-root-user
|
|
||||||
# - config-base-debian-os
|
|
||||||
# - config-repo-vn
|
|
||||||
# - config-fail2ban # or hacer
|
|
||||||
# - config-nagios-nrpe # or hacer
|
|
||||||
# - config-server-type
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG AUTOFS HOMES] Comprobando si es necesario configurar AUTOFS HOMES"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar AUTOFS HOMES en la máquina"
|
|
||||||
when: autofs_homes_enabled is not defined or not autofs_homes_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG AUTOFS HOMES] Install and configure AUTOFS HOMES"
|
|
||||||
import_role:
|
|
||||||
name: config-autofs-homes
|
|
||||||
when: autofs_homes_enabled is defined and autofs_homes_enabled
|
|
|
@ -1,12 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CREATE AWX-USER] Create awx user and config ssh-key"
|
|
||||||
import_role:
|
|
||||||
name: config-awx-user
|
|
|
@ -1,20 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
#- hosts: '{{ ip_addr }}'
|
|
||||||
# become: yes
|
|
||||||
# become_method: sudo
|
|
||||||
# gather_facts: yes
|
|
||||||
|
|
||||||
# tasks:
|
|
||||||
|
|
||||||
# - name: "[CONFIG BASE DEBIAN OS] Configure debian os"
|
|
||||||
# import_role:
|
|
||||||
# name: config-base-debian-os
|
|
||||||
|
|
||||||
# - name: "[CONFIG LOCALES] Set locales"
|
|
||||||
# import_role:
|
|
||||||
# name: config-locales
|
|
||||||
|
|
||||||
# - name: "[CONFIG TZDATA] Set timezone"
|
|
||||||
# import_role:
|
|
||||||
# name: config-tzdata
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG CENTRALIZED AUTH] Comprobando si es necesario configurar centralized auth"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar centralized auth en la máquina"
|
|
||||||
when: centralized_auth_enabled is not defined or not centralized_auth_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG CENTRALIZED AUTH] Config centralized auth"
|
|
||||||
import_role:
|
|
||||||
name: config-centralized-auth
|
|
||||||
when: centralized_auth_enabled is defined and centralized_auth_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG FAIL2BAN] Comprobando si es necesario configurar fail2ban "
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar fail2ban en la máquina"
|
|
||||||
when: fail2ban_enabled is not defined or not fail2ban_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"
|
|
||||||
import_role:
|
|
||||||
name: config-fail2ban
|
|
||||||
when: fail2ban_enabled is defined and fail2ban_enabled
|
|
|
@ -1,12 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG FREERADIUS TOTOP] Install and configure FREERADIUS TOTOP"
|
|
||||||
import_role:
|
|
||||||
name: config-freeradius-totp
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTNAME] Comprobando si es necesario configurar hostname "
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar hostname en la máquina"
|
|
||||||
when: hostname_enabled is not defined or not hostname_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTNAME] Configure hostname"
|
|
||||||
import_role:
|
|
||||||
name: config-hostname
|
|
||||||
when: hostname_enabled is defined and hostname_enabled
|
|
|
@ -1,19 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTS FILE] Comprobando si es necesario configurar hosts file "
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar hosts file en la máquina"
|
|
||||||
when: hosts_enabled is not defined or not hosts_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG HOSTS FILE] Configure hosts file"
|
|
||||||
import_role:
|
|
||||||
name: config-hosts
|
|
||||||
when: hosts_enabled is defined and hosts_enabled
|
|
||||||
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG HOT PLUG] Comprobando si es necesario configurar hot plug"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar hot plug en la máquina"
|
|
||||||
when: hot_plug_enabled is not defined or not hot_plug_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG HOT PLUG] Install and configure hot plug"
|
|
||||||
import_role:
|
|
||||||
name: config-hot-plug
|
|
||||||
when: hot_plug_enabled is defined and hot_plug_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG INSTALL PACKAGES] Comprobando si es necesario instalar paqueteria"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario instalar paqueteria en la máquina"
|
|
||||||
when: packages_enabled is not defined or not packages_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG INSTALL PACKAGES] Install packages"
|
|
||||||
import_role:
|
|
||||||
name: config-install-packages
|
|
||||||
when: packages_enabled is defined and packages_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG LOCALES] Comprobando si es necesario configurar locales"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar locales en la máquina"
|
|
||||||
when: locales_enabled is not defined or not locales_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG LOCALES] Set locales"
|
|
||||||
import_role:
|
|
||||||
name: config-locales
|
|
||||||
when: locales_enabled is defined and locales_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG MOTD] Comprobando si es necesario configurar motd"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar motd en la máquina"
|
|
||||||
when: motd_enabled is not defined or not motd_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG MOTD] Config motd"
|
|
||||||
import_role:
|
|
||||||
name: config-motd
|
|
||||||
when: motd_enabled is defined and motd_enabled
|
|
|
@ -1,12 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
- name: "[CONFIG NAGIOS NRPE] Install and configure nagios nrpe service"
|
|
||||||
import_role:
|
|
||||||
name: config-nagios-nrpe
|
|
||||||
when: nagios_nrpe_enabled is defined and nagios_nrpe_enabled
|
|
|
@ -1,12 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: ns1
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG NSUPDATE] configure zone with NSUPDATE"
|
|
||||||
import_role:
|
|
||||||
name: config-nsupdate
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG NTP] Comprobando si es necesario configurar ntp"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar ntp en la máquina"
|
|
||||||
when: ntp_enabled is not defined or not ntp_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG NTP] Install and configure ntp"
|
|
||||||
import_role:
|
|
||||||
name: config-ntp
|
|
||||||
when: ntp_enabled is defined and ntp_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG RELAYHOST SMTP] Comprobando si es necesario configurar relayhost smtp"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar relayhost smtp en la máquina"
|
|
||||||
when: relay_host_enabled is not defined or not relay_host_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG RELAYHOST SMTP] Config relayhost smtp"
|
|
||||||
import_role:
|
|
||||||
name: config-relayhost-smtp
|
|
||||||
when: relay_host_enabled is defined and relay_host_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG REPO VN] Comprobando si es necesario configurar repositorios"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar repositorios en la máquina"
|
|
||||||
when: repo_vn_enabled is not defined or not repo_vn_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG REPO VN] Add-repos-vn"
|
|
||||||
import_role:
|
|
||||||
name: config-repo-vn
|
|
||||||
when: repo_vn_enabled is defined and repo_vn_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG RESOLV FILE] Comprobando si es necesario configurar resolv file "
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar resolv file en la máquina"
|
|
||||||
when: resolv_enabled is not defined or not resolv_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG RESOLV FILE] Configure resolv file"
|
|
||||||
import_role:
|
|
||||||
name: config-resolv
|
|
||||||
when: resolv_enabled is defined and resolv_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG ROOT USER] Comprobando si es necesario configurar SSH root user"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar SSH root user en la máquina"
|
|
||||||
when: root_user_enabled is not defined or not root_user_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG ROOT USER] Configure SSH root user"
|
|
||||||
import_role:
|
|
||||||
name: config-root-user
|
|
||||||
when: root_user_enabled is defined and root_user_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG SECURE GRUB] Comprobando si es necesario configurar secure grub"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar secure grub en la máquina"
|
|
||||||
when: secure_grub_enabled is not defined or not secure_grub_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG SECURE GRUB] configure secure grub"
|
|
||||||
import_role:
|
|
||||||
name: config-secure-grub
|
|
||||||
when: secure_grub_enabled is defined and secure_grub_enabled
|
|
|
@ -1,12 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: localhost
|
|
||||||
become: no
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG SEND MAIL] Send Mail"
|
|
||||||
import_role:
|
|
||||||
name: config-send-mail
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG SERVER TYPE] Comprobando si es necesario instalar guest side"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario instalar guest side en la máquina"
|
|
||||||
when: server_type_enabled is not defined or not server_type_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG SERVER TYPE] Install guest side"
|
|
||||||
import_role:
|
|
||||||
name: config-server-type
|
|
||||||
when: server_type_enabled is defined and server_type_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG SUDOERS] Comprobando si es necesario configurar sudoers"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar sudoers en la máquina"
|
|
||||||
when: sudoers_enabled is not defined or not sudoers_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG SUDOERS] Config sudoers"
|
|
||||||
import_role:
|
|
||||||
name: config-sudoers
|
|
||||||
when: sudoers_enabled is defined and sudoers_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG TZDATA] Comprobando si es necesario configurar timezone"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar timezone en la máquina"
|
|
||||||
when: tzdata_enabled is not defined or not tzdata_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG TZDATA] Set timezone"
|
|
||||||
import_role:
|
|
||||||
name: config-tzdata
|
|
||||||
when: tzdata_enabled is defined and tzdata_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG UPDATE] Comprobando si es necesario realizar update "
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario realizar update en la máquina"
|
|
||||||
when: update_enabled is not defined or not update_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG UPDATE] Config update"
|
|
||||||
import_role:
|
|
||||||
name: config-update-and-upgrade-packages
|
|
||||||
when: update_enabled is defined and update_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG VIM OPTIONS] Comprobando si es necesario configurar vim options"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar vim options en la máquina"
|
|
||||||
when: vim_options_enabled is not defined or not vim_options_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG VIM OPTIONS] Config vim options"
|
|
||||||
import_role:
|
|
||||||
name: config-vim-options
|
|
||||||
when: vim_options_enabled is defined and vim_options_enabled
|
|
|
@ -1,18 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: no
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
- name: "[CONFIG ZABBIX AGENT] Comprobando si es necesario configurar ZABBIX AGENT"
|
|
||||||
debug:
|
|
||||||
msg: "No es necesario configurar ZABBIX AGENT en la máquina"
|
|
||||||
when: zabbix_agent_enabled is not defined or not zabbix_agent_enabled
|
|
||||||
|
|
||||||
- name: "[CONFIG ZABBIX AGENT] Install and configure ZABBIX AGENT"
|
|
||||||
import_role:
|
|
||||||
name: config-zabbix-agent
|
|
||||||
when: zabbix_agent_enabled is defined and zabbix_agent_enabled
|
|
|
@ -1,27 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ ip_addr }}'
|
|
||||||
become: yes
|
|
||||||
become_method: sudo
|
|
||||||
gather_facts: yes
|
|
||||||
|
|
||||||
tasks:
|
|
||||||
|
|
||||||
# step1 - run apt-get update
|
|
||||||
- name: update index of all packages
|
|
||||||
ansible.builtin.apt:
|
|
||||||
update_cache: true
|
|
||||||
force_apt_get: true
|
|
||||||
|
|
||||||
# step2 - run apt-get update
|
|
||||||
- name: update all packages to their latest version
|
|
||||||
ansible.builtin.apt:
|
|
||||||
name: "exim4"
|
|
||||||
state: latest
|
|
||||||
force_apt_get: true
|
|
||||||
|
|
||||||
# step3 - run apt autoremove
|
|
||||||
- name: autoremove packages unused dependency packages
|
|
||||||
ansible.builtin.apt:
|
|
||||||
autoremove: true
|
|
||||||
force_apt_get: true
|
|
|
@ -1,6 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- hosts: '{{ hosts_servers }}'
|
|
||||||
gather_facts: true
|
|
||||||
tasks:
|
|
||||||
- ping:
|
|
|
@ -0,0 +1,5 @@
|
||||||
|
- hosts: all
|
||||||
|
tasks:
|
||||||
|
- name: Upgrade system
|
||||||
|
import_role:
|
||||||
|
name: debian-upgrade
|
|
@ -0,0 +1,16 @@
|
||||||
|
- hosts: all
|
||||||
|
tasks:
|
||||||
|
- name: Configure AWX user
|
||||||
|
import_role:
|
||||||
|
name: awx
|
||||||
|
- name: Configure base system
|
||||||
|
import_role:
|
||||||
|
name: debian-base
|
||||||
|
- name: Configure guest
|
||||||
|
import_role:
|
||||||
|
name: debian-guest
|
||||||
|
when: ansible_virtualization_role == 'guest'
|
||||||
|
- name: Configure virtual machine
|
||||||
|
import_role:
|
||||||
|
name: debian-qemu
|
||||||
|
when: ansible_virtualization_role == 'guest' and ansible_virtualization_type == 'kvm'
|
|
@ -0,0 +1,9 @@
|
||||||
|
- hosts: all
|
||||||
|
gather_facts: yes
|
||||||
|
tasks:
|
||||||
|
- name: Print all available facts
|
||||||
|
ansible.builtin.debug:
|
||||||
|
var: ansible_facts
|
||||||
|
- name: Print variable value
|
||||||
|
debug:
|
||||||
|
msg: "Variable: {{ ansible_fqdn }}"
|
|
@ -0,0 +1,5 @@
|
||||||
|
- hosts: all
|
||||||
|
tasks:
|
||||||
|
- name: Install and configure Freeradius with TOTP
|
||||||
|
import_role:
|
||||||
|
name: freeradius
|
|
@ -0,0 +1,5 @@
|
||||||
|
- hosts: ns1
|
||||||
|
tasks:
|
||||||
|
- name: Configure zone with nsupdate
|
||||||
|
import_role:
|
||||||
|
name: nsupdate
|
|
@ -0,0 +1,3 @@
|
||||||
|
- hosts: all
|
||||||
|
tasks:
|
||||||
|
- ping:
|
|
@ -0,0 +1,6 @@
|
||||||
|
- hosts: localhost
|
||||||
|
become: no
|
||||||
|
tasks:
|
||||||
|
- name: Send mail
|
||||||
|
import_role:
|
||||||
|
name: send-mail
|
|
@ -0,0 +1,5 @@
|
||||||
|
- hosts: all
|
||||||
|
tasks:
|
||||||
|
- name: Test role
|
||||||
|
import_role:
|
||||||
|
name: debian-base
|
|
@ -0,0 +1,5 @@
|
||||||
|
- name: Ping Windows hosts
|
||||||
|
hosts: all
|
||||||
|
tasks:
|
||||||
|
- name: Ping Windows hosts
|
||||||
|
ansible.windows.win_ping:
|
|
@ -0,0 +1,28 @@
|
||||||
|
- hosts: all
|
||||||
|
serial: 1
|
||||||
|
tasks:
|
||||||
|
- block:
|
||||||
|
- name: Check if there are missing updates
|
||||||
|
win_updates: state=searched
|
||||||
|
register: update_count
|
||||||
|
- block:
|
||||||
|
- name: Install missing updates only if at least one is missing
|
||||||
|
win_updates:
|
||||||
|
category_names: '*'
|
||||||
|
#- Application
|
||||||
|
#- Connectors
|
||||||
|
#- DefinitionUpdates
|
||||||
|
#- DeveloperKits
|
||||||
|
#- FeaturePacks
|
||||||
|
#- Guidance
|
||||||
|
#- ServicePacks
|
||||||
|
#- Tools
|
||||||
|
#- UpdateRollups
|
||||||
|
#- CriticalUpdates
|
||||||
|
#- SecurityUpdates
|
||||||
|
log_path: C:\Win_Template_Patch.log
|
||||||
|
register: update_result
|
||||||
|
- name: Reboot, if needed.
|
||||||
|
win_reboot:
|
||||||
|
when: update_result.reboot_required
|
||||||
|
when: update_count.found_update_count|int >= 1
|
|
@ -0,0 +1 @@
|
||||||
|
awx-user ALL=(ALL) NOPASSWD:ALL
|
|
@ -0,0 +1,23 @@
|
||||||
|
- name: Create AWX user
|
||||||
|
user:
|
||||||
|
name: awx-user
|
||||||
|
password: '*'
|
||||||
|
shell: /bin/bash
|
||||||
|
groups: sudo
|
||||||
|
state: present
|
||||||
|
comment: ssh user
|
||||||
|
- name: Adding SSH public key
|
||||||
|
authorized_key:
|
||||||
|
user: awx-user
|
||||||
|
key: "{{ awx_pub_key }}"
|
||||||
|
- name: Install sudo package
|
||||||
|
apt:
|
||||||
|
name: sudo
|
||||||
|
state: present
|
||||||
|
- name: Add user to sudoers
|
||||||
|
copy:
|
||||||
|
src: sudoers
|
||||||
|
dest: /etc/sudoers.d/awx
|
||||||
|
mode: u=rw,g=r
|
||||||
|
owner: root
|
||||||
|
group: root
|
|
@ -1,13 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
# restart nslcd service to apply changes
|
|
||||||
- name: restart nslcd
|
|
||||||
service:
|
|
||||||
name: "{{ nslcd_daemon }}"
|
|
||||||
state: restarted
|
|
||||||
|
|
||||||
# restart autofs service to apply changes
|
|
||||||
- name: restart autofs
|
|
||||||
service:
|
|
||||||
name: "{{ autofs_daemon }}"
|
|
||||||
state: restarted
|
|
|
@ -1,70 +0,0 @@
|
||||||
---
|
|
||||||
|
|
||||||
- name: "[CONFIG AUTOFS HOMES] Comprobando si es necesario configurar AUTOFS HOMES"
|
|
||||||
meta: end_host
|
|
||||||
when: autofs_homes_enabled is not defined or not autofs_homes_enabled
|
|
||||||
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# install packages nfs-common , autofs , libnfs-utils , autofs-ldap
|
|
||||||
- name: install packages for autofs
|
|
||||||
apt:
|
|
||||||
name: "{{ item }}"
|
|
||||||
state: present
|
|
||||||
with_items:
|
|
||||||
- nfs-common
|
|
||||||
- autofs
|
|
||||||
- libnfs-utils
|
|
||||||
- autofs-ldap
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# create directory /mnt/homes for mount
|
|
||||||
- name: create directory /mnt/homes
|
|
||||||
ansible.builtin.file:
|
|
||||||
path: "{{ path_mnt_homes }}"
|
|
||||||
state: directory
|
|
||||||
mode: '0755'
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# add line to /etc/nsswitch.conf
|
|
||||||
- name: add line to file /etc/nsswitch.conf
|
|
||||||
lineinfile:
|
|
||||||
path: "{{ path_nsswitch }}"
|
|
||||||
line: "automount: files"
|
|
||||||
notify: restart nslcd
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# add files configured to autofs
|
|
||||||
# paso 1
|
|
||||||
- name: add file homes.autofs configured to autofs
|
|
||||||
copy:
|
|
||||||
src: homes.autofs
|
|
||||||
dest: "{{ path_home_autofs }}"
|
|
||||||
owner: root
|
|
||||||
group: root
|
|
||||||
mode: '0644'
|
|
||||||
# paso 2
|
|
||||||
- name: add file /etc/auto.homes configured to the systemd
|
|
||||||
copy:
|
|
||||||
src: auto.homes
|
|
||||||
dest: "{{ path_auto_homes }}"
|
|
||||||
owner: root
|
|
||||||
group: root
|
|
||||||
mode: '0644'
|
|
||||||
notify: restart autofs
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
||||||
# enabled autofs
|
|
||||||
- name: service should start on boot
|
|
||||||
service:
|
|
||||||
name: "{{ autofs_daemon }}"
|
|
||||||
enabled: yes
|
|
||||||
# enabled nslcd
|
|
||||||
- name: service should start on boot
|
|
||||||
service:
|
|
||||||
name: "{{ nslcd_daemon }}"
|
|
||||||
enabled: yes
|
|
||||||
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
|
@ -1,7 +0,0 @@
|
||||||
---
|
|
||||||
nslcd_daemon: nslcd
|
|
||||||
autofs_daemon: autofs
|
|
||||||
path_auto_homes: /etc/auto.homes
|
|
||||||
path_home_autofs: /etc/auto.master.d/homes.autofs
|
|
||||||
path_nsswitch: /etc/nsswitch.conf
|
|
||||||
path_mnt_homes: /mnt/homes
|
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue