ansible/playbooks/hosts/cloud-noc01.fedorainfracloud.org.yml

# This is a basic playbook

- import_playbook: "/srv/web/infra/ansible/playbooks/include/virt-create.yml"
  vars:
    myhosts: "cloud-noc01.fedorainfracloud.org"

- name: make cloud noc hardware
  hosts: cloud-noc01.fedorainfracloud.org
  user: root
  gather_facts: True

  vars_files:
   - /srv/web/infra/ansible/vars/global.yml
   - "/srv/private/ansible/vars.yml"
   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml

  roles:
  - base
  - rkhunter
  - nagios_client
  - hosts
  - collectd/base
  - sudo
  - dhcp_server
  - tftp_server

  pre_tasks:
  - import_tasks: "{{ tasks_path }}/yumrepos.yml"

  tasks:
  - import_tasks: "{{ tasks_path }}/motd.yml"

  - name: check if ntpd port is already known by selinux
    shell: semanage port -l | grep ntp
    register: ntp_selinux_port
    check_mode: no
    changed_when: false
    failed_when: false
    tags:
    - config
    - selinux

  - name: allow alternate ntpd port
    command: semanage port -a -t ntp_port_t -p tcp 124
    when: '"124" not in ntp_selinux_port'
    failed_when: false
    tags:
    - config
    - selinux

  - name: allow alternate ntpd port
    command: semanage port -a -t ntp_port_t -p udp 124
    when: '"124" not in ntp_selinux_port'
    failed_when: false
    tags:
    - config
    - selinux

  handlers:
  - import_tasks: "{{ handlers_path }}/restart_services.yml"
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00			`# This is a basic playbook`

adding hosts folder as well to the PR 2023-05-18 16:29:58 -04:00			`- import_playbook: "/srv/web/infra/ansible/playbooks/include/virt-create.yml"`
			`vars:`
			`myhosts: "cloud-noc01.fedorainfracloud.org"`
try to make this work as a virtual guest on virthost-cloud01 2019-08-21 15:56:09 +00:00
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00			`- name: make cloud noc hardware`
how do you shave a yak? one hair at a time. Move the cloud-noc to the right name so playbook works 2020-03-17 19:42:41 +00:00			`hosts: cloud-noc01.fedorainfracloud.org`
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00			`user: root`
			`gather_facts: True`

Death to all trailing whitespace. 2016-08-08 19:36:31 +00:00			`vars_files:`
Revert "cloud-noc01: test fixing passing vars to task and abstract paths out" This reverts commit d59a7c2c44580c26bb84404d7a1a1d966702b65c. 2022-06-13 17:06:33 -07:00			`- /srv/web/infra/ansible/vars/global.yml`
			`- "/srv/private/ansible/vars.yml"`
			`- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml`
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00
			`roles:`
			`- base`
			`- rkhunter`
and this is how you break everything before going on a week vacation 2017-05-05 22:12:33 +00:00			`- nagios_client`
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00			`- hosts`
			`- collectd/base`
			`- sudo`
add some meat to cloud-noc01 2014-08-26 20:23:17 +00:00			`- dhcp_server`
			`- tftp_server`
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00
fix all playbooks so that yumrepos is a pre_task 2018-10-30 18:28:26 +00:00			`pre_tasks:`
switch all the include tasks to import tasks 2017-10-17 17:37:03 +00:00			`- import_tasks: "{{ tasks_path }}/yumrepos.yml"`
fix all playbooks so that yumrepos is a pre_task 2018-10-30 18:28:26 +00:00
			`tasks:`
switch all the include tasks to import tasks 2017-10-17 17:37:03 +00:00			`- import_tasks: "{{ tasks_path }}/motd.yml"`
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00
cloud-noc01: set selinux to allow ntp port on 124 Signed-off-by: Kevin Fenzi <kevin@scrye.com> 2019-05-08 22:49:55 +00:00			`- name: check if ntpd port is already known by selinux`
			`shell: semanage port -l \| grep ntp`
			`register: ntp_selinux_port`
			`check_mode: no`
			`changed_when: false`
			`failed_when: false`
			`tags:`
			`- config`
			`- selinux`

			`- name: allow alternate ntpd port`
			`command: semanage port -a -t ntp_port_t -p tcp 124`
cloud-noc01: start and end when clause with quotes for the parser Signed-off-by: Kevin Fenzi <kevin@scrye.com> 2019-05-08 22:51:54 +00:00			`when: '"124" not in ntp_selinux_port'`
cloud-noc01: set selinux to allow ntp port on 124 Signed-off-by: Kevin Fenzi <kevin@scrye.com> 2019-05-08 22:49:55 +00:00			`failed_when: false`
			`tags:`
			`- config`
			`- selinux`

NTP is UDP Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org> 2019-05-16 17:39:34 +02:00			`- name: allow alternate ntpd port`
			`command: semanage port -a -t ntp_port_t -p udp 124`
			`when: '"124" not in ntp_selinux_port'`
			`failed_when: false`
			`tags:`
			`- config`
			`- selinux`

make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00			`handlers:`
typo on a massive scale 2017-10-15 20:33:11 +00:00			`- import_tasks: "{{ handlers_path }}/restart_services.yml"`
make a minimal playbook for cloud-noc 2014-08-26 00:31:17 +00:00