|
|
|
|
# yamllint disable rule:line-length
|
|
|
|
|
# Playbook command
|
|
|
|
|
# First use :
|
|
|
|
|
# ansible-playbook evolixisation.yml --ask-vault-pass -CDki hosts -u root -l HOSTNAME
|
|
|
|
|
# Subsequent use :
|
|
|
|
|
# ansible-playbook evolixisation.yml --ask-vault-pass -CDKi hosts --skip-tags pf -l HOSTNAME
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
- name: Evolixisation of an OpenBSD system
|
|
|
|
|
hosts: openbsd
|
|
|
|
|
become: true
|
|
|
|
|
become_user: root
|
|
|
|
|
become_method: sudo
|
|
|
|
|
|
|
|
|
|
vars_files:
|
|
|
|
|
- vars/main.yml
|
|
|
|
|
- vars/evolix-main.yml
|
|
|
|
|
- vars/evolinux-secrets.yml
|
|
|
|
|
|
|
|
|
|
vars:
|
|
|
|
|
client_number: "XXX"
|
|
|
|
|
monitoring_mode: "everytime"
|
|
|
|
|
|
|
|
|
|
pre_tasks:
|
|
|
|
|
- include_role:
|
|
|
|
|
name: etc-git
|
|
|
|
|
tasks_from: commit.yml
|
|
|
|
|
vars:
|
|
|
|
|
commit_message: "Ansible pre-run evolisation.yml"
|
|
|
|
|
when: not ansible_check_mode
|
|
|
|
|
tags: always
|
|
|
|
|
|
|
|
|
|
roles:
|
|
|
|
|
- etc-git
|
|
|
|
|
- base
|
|
|
|
|
- forwarding
|
|
|
|
|
- pf
|
|
|
|
|
- accounts
|
|
|
|
|
- nagios-nrpe
|
|
|
|
|
- evocheck
|
|
|
|
|
- post-install
|
|
|
|
|
# - ospf
|
|
|
|
|
# - bgp
|
|
|
|
|
# - { role: collectd, collectd_server: "127.0.0.1" }
|
|
|
|
|
# - logsentry
|
|
|
|
|
|
|
|
|
|
post_tasks:
|
|
|
|
|
- include_role:
|
|
|
|
|
name: etc-git
|
|
|
|
|
tasks_from: commit.yml
|
|
|
|
|
vars:
|
|
|
|
|
commit_message: "Ansible post-run evolisation.yml"
|
|
|
|
|
when: not ansible_check_mode
|
|
|
|
|
tags: always
|
|
|
|
|
|
|
|
|
|
- include_role:
|
|
|
|
|
name: evocheck
|
|
|
|
|
tasks_from: exec.yml
|
