2017-09-26 23:32:47 +02:00
|
|
|
---
|
|
|
|
- name: Prepare Amazon EC2 instance
|
|
|
|
hosts: localhost
|
|
|
|
gather_facts: False
|
|
|
|
|
|
|
|
vars:
|
2018-04-04 23:21:31 +02:00
|
|
|
aws_access_key:
|
|
|
|
aws_secret_key:
|
2017-09-26 23:32:47 +02:00
|
|
|
aws_region: ca-central-1
|
|
|
|
|
|
|
|
tasks:
|
2023-03-20 23:33:19 +01:00
|
|
|
- ansible.builtin.include_role:
|
2019-11-29 14:00:25 +01:00
|
|
|
name: evolix/amazon-ec2
|
2017-11-21 14:56:45 +01:00
|
|
|
tasks_from: setup.yml
|
2023-03-20 23:33:19 +01:00
|
|
|
- ansible.builtin.include_role:
|
2019-11-29 14:00:25 +01:00
|
|
|
name: evolix/amazon-ec2
|
2017-09-26 23:32:47 +02:00
|
|
|
tasks_from: create-instance.yml
|
|
|
|
|
|
|
|
- name: Install Evolinux
|
|
|
|
hosts: launched-instances
|
|
|
|
become: yes
|
|
|
|
|
|
|
|
vars_files:
|
|
|
|
- 'vars/secrets.yml'
|
|
|
|
|
|
|
|
vars:
|
|
|
|
admin_users: "{{ admin_users }}"
|
|
|
|
minifirewall_trusted_ips: "{{ trusted_ips }}"
|
|
|
|
fail2ban_ignore_ips: "{{ trusted_ips }}"
|
|
|
|
evolinux_hostname:
|
|
|
|
evolinux_domain:
|
|
|
|
evolinux_fqdn:
|
|
|
|
evolinux_internal_hostname:
|
|
|
|
minifirewall_public_ports_tcp: [80, 443]
|
|
|
|
minifirewall_public_ports_udp: []
|
|
|
|
minifirewall_semipublic_ports_tcp: [22]
|
|
|
|
nagios_nrpe_allowed_hosts: "{{ trusted_ips }}"
|
|
|
|
|
|
|
|
roles:
|
|
|
|
- etc-git
|
|
|
|
- evolinux-base
|
|
|
|
- admin-users
|
|
|
|
- munin
|
|
|
|
- minifirewall
|
|
|
|
- fail2ban
|
|
|
|
- nagios-nrpe
|
|
|
|
- listupgrade
|
|
|
|
- evomaintenance
|
|
|
|
- evocheck
|
|
|
|
- packweb-apache
|
|
|
|
- mysql
|
|
|
|
|
|
|
|
post_tasks:
|
2023-03-20 23:33:19 +01:00
|
|
|
- ansible.builtin.include_role:
|
2019-11-29 14:00:25 +01:00
|
|
|
name: evolix/etc-git
|
2017-09-26 23:32:47 +02:00
|
|
|
tasks_from: commit.yml
|
|
|
|
vars:
|
|
|
|
commit_message: "Ansible post-run Evolinux playbook"
|
|
|
|
|
|
|
|
- include_role:
|
2019-11-29 14:00:25 +01:00
|
|
|
name: evolix/evocheck
|
2017-09-26 23:32:47 +02:00
|
|
|
tasks_from: exec.yml
|