Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions
ansible/playbooks/groups/noc.yml
Kevin Fenzi ca10e37592 playbooks / staging: adjust playbooks for staging to configure fedmsg if needed 
When we setup things we didn't setup fedmsg in iad2 staging.
Now we are using it, so we should configure it until we get rid of it.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
2021-03-01 14:51:09 -08:00

75 lines
2 KiB
YAML
Raw Blame History

# This is a basic playbook
- import_playbook: "/srv/web/infra/ansible/playbooks/include/virt-create.yml myhosts=nagios"
- name: make the box be real
hosts: nagios
user: root
gather_facts: True
vars_files:
- /srv/web/infra/ansible/vars/global.yml
- "/srv/private/ansible/vars.yml"
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
pre_tasks:
- import_tasks: "{{ tasks_path }}/yumrepos.yml"
roles:
- base
- rkhunter
- nagios_client
- hosts
- { role: ipa/client, when: env == "staging" }
- { role: fas_client, when: env != "staging" }
- collectd/base
- { role: rsyncd, when: datacenter == 'iad2' }
- sudo
- { role: openvpn/client, when: env != "staging" }
- mod_wsgi
- role: keytab/service
owner_user: apache
owner_group: apache
service: HTTP
host: "nagios{{env_suffix}}.fedoraproject.org"
when: datacenter == 'iad2'
- role: keytab/service
owner_user: apache
owner_group: apache
service: HTTP
host: "nagios-external{{env_suffix}}.fedoraproject.org"
when: datacenter != 'iad2'
- { role: letsencrypt, site_name: 'nagios-external.fedoraproject.org', when: inventory_hostname.startswith('noc02') }
tasks:
- import_tasks: "{{ tasks_path }}/2fa_client.yml"
- import_tasks: "{{ tasks_path }}/motd.yml"
handlers:
- import_tasks: "{{ handlers_path }}/restart_services.yml"
- name: deploy service-specific config (just for production)
hosts: nagios
user: root
gather_facts: True
vars_files:
- /srv/web/infra/ansible/vars/global.yml
- "/srv/private/ansible/vars.yml"
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
handlers:
- import_tasks: "{{ handlers_path }}/restart_services.yml"
roles:
- { role: dhcp_server, when: datacenter == 'iad2' }
- { role: tftp_server, when: datacenter == 'iad2' }
- { role: nagios_server }
- { role: fedmsg/base }
tasks:
- name: install some packages which arent in playbooks
package:
state: present
name:
- nmap
- tcpdump
Reference in a new issue View git blame Copy permalink