ansible/oopen-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update..

Browse Source
This commit is contained in:
Christoph
2022-07-20 00:54:01 +02:00
parent 151a3b467b
commit 9137c0a021
8 changed files with 408 additions and 176 deletions
Download Patch File Download Diff File Expand all files Collapse all files

184
host_vars/o28.oopen.de.yml
View File

@ -4,6 +4,7 @@
# vars used by roles/network_interfaces
# ---
# If true, all additional files in /etc/network/interfaces/interfaces.d/ are deleted
network_manage_devices: True
@ -22,21 +23,150 @@ network_interface_required_packages:
network_interfaces:
- device: br0
# Many device configurations are possible (as many as needed)
#
- device: enp41s0
# use only once per device (for the first device entry)
headline: br0 - bridge over device enp35s0
headline: enp41s0 - primary device
# auto & allow are only used for the first device entry
# auto & allow are only used for the first entry of that devicei-name)
#
allow: [] # array of allow-[stanzas] eg. allow-hotplug
auto: true
family: inet
# The statisc Mode
# Options
# address <dotted quad address[/netmask]>
# gateway <dotted quad address>
# pointopoint <Address of other end point (dotted quad). Note the spelling of "point-to">
# hwaddress <mac-address>
# mtu <size>
# scope <Address validity scope. Possible values: global, link, host>
#
# The manual Method
# Options
# hwaddress <mac-address>
# mtu <size>
#
# The dhcp Method
# Options
# hwaddress <mac-address>
# hostname <Hostname to be requested (pump, dhcpcd, udhcpc)>
# metric <metric>
# leasehours <Preferred lease time in hours (pump)>
# leasetime <Preferred lease time in seconds (dhcpcd)>
# vendor <Vendor class identifier (dhcpcd)>
# client <Client identifier (dhcpcd), or "no" (dhclient)>
#
# The bootp Method
# Options
# bootfile: <file: Tell the server to use 'file' as the bootfile.>
# server: <address: Use the IP address 'address' to communicate with the server.>
# hwaddr <mac-address: Use addr as the hardware address instead of whatever it really is.>
#
method: static
hwaddress: a8:a1:59:0e:9f:2c
hwaddress:
description:
address: 95.217.109.232
address: 65.108.238.45
# dotted quad or number of bits
#
# the entry will be: address/netmask
netmask: 26
gateway: 95.217.109.193
gateway: 65.108.238.1
metric:
pointopoint:
mtu:
scope:
# additional user by dhcp method
#
hostname:
leasehours:
leasetime:
vendor:
client:
# additional used by bootp method
#
bootfile:
server:
hwaddr:
# optional dns settings nameservers: []
#
# nameservers:
# - 194.150.168.168 # dns.as250.net
# - 91.239.100.100 # anycast.censurfridns.dk
# search: warenform.de
#
nameservers:
- 185.12.64.1
- a01:4ff:ff00::add:2
search:
# optional additional subnets/ips subnets: []
# subnets:
# - '192.168.123.0/24'
# - '192.168.124.11/32'
# optional bridge parameters bridge: {}
# bridge:
# ports:
# stp:
# fd:
# maxwait:
# waitport:
bridge: {}
# optional bonding parameters bond: {}
# bond:
# master
# primary
# slave
# mode:
# miimon:
# lacp-rate:
# ad-select-rate:
# master:
# slaves:
bond: {}
# optional vlan settings | vlan: {}
# vlan: {}
# raw-device: 'eth0'
vlan: {}
# inline hook scripts
#
# example:
#
# up:
# - !!str "route add -net 135.181.79.192 netmask 255.255.255.192 gw 135.181.79.193 dev enp41s0"
#
pre-up: [] # pre-up script lines
up:
- !!str "route add -net 65.108.238.0 netmask 255.255.255.192 gw 65.108.238.1 dev enp41s0"
post-up: [] # post-up script lines (alias for up)
pre-down: [] # pre-down script lines (alias for down)
down: [] # down script lines
post-down: [] # post-down script lines
- device: enp41s0
# use only once per device (for the first device entry)
headline:
# auto & allow are only used for the first device entry
allow: [] # array of allow-[stanzas] eg. allow-hotplug
auto:
family: inet6
method: static
address: 2a01:4f9:1a:b226::2
netmask: 64
gateway: fe80::1
metric:
pointopoint:
mtu:
@ -64,8 +194,6 @@ network_interfaces:
# search: warenform.de
#
nameservers:
- 195.201.179.131
- 95.217.204.204
search:
# optional additional subnets/ips subnets: []
@ -80,24 +208,15 @@ network_interfaces:
# fd:
# maxwait:
# waitport:
bridge:
ports: enp35s0 # for mor devices support a blank separated list
stp: !!str off
fd: 1
hello: 2
maxage: 12
bridge: {}
# optional bonding parameters bond: {}
# bond:
# master
# primary
# slave
# method:
# mode:
# miimon:
# lacp-rate:
# ad-select-rate:
# master:
# slaves:
# lacp-rate:
bond: {}
# optional vlan settings | vlan: {}
@ -106,23 +225,13 @@ network_interfaces:
vlan: {}
# inline hook scripts
pre-up: [] # pre-up script lines
up:
- !!str "route add -net 95.217.109.192 netmask 255.255.255.192 gw 95.217.109.193 dev br0" # up script lines
pre-up: []# pre-up script lines
up: [] # up script lines
post-up: [] # post-up script lines (alias for up)
pre-down: [] # pre-down script lines (alias for down)
down: [] # down script lines
post-down: [] # post-down script lines
- device: br0
family: inet6
method: static
address: 2a01:4f9:4a:2b57::2
netmask: 64
gateway: fe80::1
# ---
# vars used by roles/ansible_dependencies
# ---
@ -147,11 +256,16 @@ network_interfaces:
# vars used by roles/common/tasks/apt.yml
# ---
#apt_manage_sources_list: false
# ---
# vars used by roles/common/tasks/users.yml
# ---
create_sftp_group: true
default_user:
- name: chris
@ -193,6 +307,12 @@ default_user:
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol'
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol'
extra_system_user:
- name: www-data
home: /var/www
groups: sftp_users
sudo_users:
- chris
- sysadm