infra-ansible

ansible script to ship alpine/ssh/wireguard

git clone https://9o.is/git/infra-ansible.git

commit f6ffa651f7fcec9119a8e2550d3f8dacef85e15d
parent c04aad42930d02e5dd31b83883645cf5aa40af3a
Author: Jul <jul@9o.is>
Date:   Mon, 13 May 2024 15:28:03 +0800

set up server environment for ansible

Diffstat:

Ahost/roles/setup/tasks/main.yml | 9+++++++++


Mhost/site.yml | 25++++++++++++++-----------


2 files changed, 23 insertions(+), 11 deletions(-)

diff --git a/host/roles/setup/tasks/main.yml b/host/roles/setup/tasks/main.yml
@@ -0,0 +1,9 @@
+---
+- name: Set MTU to 576
+  raw: |
+    apt install -y iproute2
+    ip link set {{ net_interface }} mtu 576
+    echo "mtu 576" >> /etc/network/interfaces
+
+- name: Install Python
+  raw: apt install -y python3
diff --git a/host/site.yml b/host/site.yml
@@ -1,26 +1,29 @@
 ---
-- name: Initiate
+- name: Ansible Setup
   hosts: servers
+  gather_facts: false
   remote_user: root
   tags: init
   roles:
-    - hostname
-    - openssh
+    - setup
 
-- name: Firewall
+- name: Initiate
   hosts: servers
-  remote_user: user
-  become: true
-  tags: firewall
+  remote_user: root
+  tags: init
   roles:
-    - iptables
-    - fwknop
+    - hostname
+    - openssh
 
 - name: Kubernetes
   hosts: servers
   remote_user: user
   become: true
-  tags: kubes
   roles:
-    - k0s
+    - role: iptables
+      tags: firewall
+    - role: fwknop
+      tags: firewall
+    - role: k0s
+      tags: kubes