infra-ansible

ansible script to ship alpine/ssh/wireguard

git clone https://9o.is/git/infra-ansible.git

commit f83780984757720e7df8d359ef9c05a829c8b41f
parent ee6a3d048edc741367a1ebb220cf14fc42099fcb
Author: Jul <jul@9o.is>
Date:   Sat, 11 May 2024 01:58:45 +0800

organize playbooks with iptables and fwknop

Diffstat:
A host/init.yml  | 8 ++++++++
M host/readme.md  | 10 ++++++++--
M host/site.yml  | 5 ++---

3 files changed, 18 insertions(+), 5 deletions(-)
diff --git a/host/init.yml b/host/init.yml
@@ -0,0 +1,8 @@
+---
+- name: Initiate server
+  hosts: servers
+  remote_user: root
+  roles:
+    - hostname
+    - openssh
+
diff --git a/host/readme.md b/host/readme.md
@@ -1,6 +1,12 @@
-### Starting Requirements
+### Installation
 
+- Make sure .ssh/config and .ssh/known_hosts is configured properly
 - Server must be ssh-authorized via root
-- Server must set mtu to 576 (`ip link set ens3 mtu 576`)
+- Server must set mtu to 576 for 1984 hosting (`ip link set ens3 mtu 576`)
   - else 1984 hosting will drop fragmented packets from large, sftp files
 
+```
+ansible-playbook init.yml --ssh-extra-args '-o Port=22'
+ansible-playbook site.yml
+```
+
diff --git a/host/site.yml b/host/site.yml
@@ -4,7 +4,6 @@
   remote_user: user
   become: true
   roles:
-    - hostname
-    - openssh
-#    - k0s
+    - iptables
+    - fwknop

A	host/init.yml	\|	8	++++++++
M	host/readme.md	\|	10	++++++++--
M	host/site.yml	\|	5	++---