Infrastructure cleanup

This commit is contained in:
DarkFeather 2022-12-18 22:23:17 -06:00
parent 890e20c64c
commit 36d0be5f88
Signed by: DarkFeather
GPG Key ID: 1CC1E3F4ED06F296
3 changed files with 27 additions and 5 deletions

View File

@ -11,7 +11,6 @@ all:
staticrange: '10.0.1.1,10.0.1.223,255.255.255.0,12h' staticrange: '10.0.1.1,10.0.1.223,255.255.255.0,12h'
dns: "10.0.1.2" dns: "10.0.1.2"
logserver: "10.0.1.16" logserver: "10.0.1.16"
ldapserver: "10.0.1.3"
webfront: "10.0.1.3" webfront: "10.0.1.3"
# Standards # Standards
daemon_shell: /sbin/nologin daemon_shell: /sbin/nologin
@ -21,6 +20,18 @@ all:
static: false static: false
wireless_ssid: 'Shadowfeed' wireless_ssid: 'Shadowfeed'
ansible_python_interpreter: auto_silent ansible_python_interpreter: auto_silent
ldap:
server: "10.0.1.3"
orgdn: "dc=aninix,dc=net"
binduser: 'binduser'
userou: 'ou=People'
organization: # Information about the group
admin: 'DarkFeather'
email: 'ircs://irc.aninix.net:6697/DarkFeather'
displayname: 'AniNIX'
ssl: # Standard SSL cryptographic standards
identity: 'aninix.net-0001' # The Let's Encrypt identity to use
ciphersuite: "!NULL:!SSLv2:!SSLv3:!TLSv1:EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"
children: children:
managed: managed:
children: children:
@ -153,7 +164,7 @@ all:
test2: test2:
ip: 10.0.1.53 ip: 10.0.1.53
ipinterface: ens3 ipinterface: ens3
mac: 00:15:5d:01:02:05 mac: 00:15:5d:01:02:03
cores: 2 cores: 2
memory: 2 memory: 2
bridge: br0 bridge: br0

View File

@ -44,6 +44,8 @@
roles: roles:
- hardware - hardware
- SSL - SSL
- WebServer
- IRC
- hosts: geth_hubs - hosts: geth_hubs
order: sorted order: sorted
@ -66,3 +68,12 @@
- hardware - hardware
- Node - Node
- hosts: DarkNet
order: sorted
serial: "{{ threads | default('16') }}"
gather_facts: true
ignore_unreachable: true
vars_files:
- "{{ lookup('env', 'ANSIBLE_VAULT_FILE') }}"
roles:
- DarkNet

View File

@ -8,9 +8,9 @@
# #
# Patch then restart a node # Patch then restart a node
- hosts: Node0 - hosts: virtual,geth-hubs
order: sorted order: sorted
serial: 1 serial: 4
vars: vars:
ansible_become: yes ansible_become: yes
ansible_become_method: sudo ansible_become_method: sudo
@ -19,7 +19,7 @@
roles: roles:
- patching - patching
- hosts: managed - hosts: physical
order: sorted order: sorted
ignore_unreachable: true ignore_unreachable: true
serial: 4 serial: 4